General Topics

Allow Spotify authentication, but not streaming

It there a way to allow Spotify to authenticate, but disallow streaming (both from web and apps?)

As-is there are only one AppID for Spotify, and this blocks everything.

Users having the app in offline mode has go go online every 30 day to regain new 3

Start VPN from C# or script

Hello!

Is there a way to instruct the Windows GlobalProtect Agent 2.0.3-5 (that ist completely configured for the current Windows User) to Start the VPN from C# (or from within a script)?

Thanks for any Ideas,

Jürgen.

Firewall he is covering under some vulnerability

Hi friends,

Need suggestion

Actually when auditor running Vulnerability scaner tool then on Firewall he is covering under some vulnerability

> Upgrade to the latest version of OpenSSL

>  Use a strong key

>  Disable SSL support for weak ciphers

So for the

DSCP marking over ipsec VPN

Hello,

I inherited a network with 4 sites connected together via 3 PA-500's and a PA-2020. We have implemented Lync for VOIP and I'm having issues getting packets to retain their tags across the VPN (internal to the tunnel is all I want) I can't seem

Filtering Systemlog

I'd like to filter the log in order to get lines containing e.g. "BSS".

It works when filtering the description column :  ( description contains 'IKE protocol IPSec SA delete message received from peer. SPI:0xAB229BB0.' )

It works when filtering the ob

Packet capture filters

Hello.

Does anyone else have problems with defining filters for packet capture in WebUI?

If I understand correctly (there is no info about this in official documentation) all values in the same filter are logically connected with 'AND' operator. And lo

Can not access management by WebUI

I can not access palo alto by web management https://xxx.xxx.xxx.xxx

When I login,it redirect to page login again.

I can access ssh and I see patition root is use 100%.

ssl decryption certificate

HI FRIENDS,

Now days i am facing a challenge ssl decryption certificate. i have a create a ssl decryption policy for block few App -ID after SSL decryption we got certificate error client side any suggestion???

Regards

Satish

User-ID Agent or Agentless User-ID

What is the difference between User-ID Agent and Agentless User-ID?  Why would I use one over the other?

AD interation and recently created user - problem

Hello

I'm using user ID with agents on DC. Today I got strange problem.

I created new user and I try to logon to GP portal and user GP client. Everytime I got in logs invalid username or password.

I know:

>debug user-id refresh group-mapping all  (non-in

Is Captive Portal triggered when using "any" as user in security policy?

I read a lot of captive portal set up. In almost every documents says that the user "unknown" doesn't trigger the captive portal. I think that the "any" user also included the "unknown" user, I'm not quite sure if those rules are gonna trigger the ca

TS Agent 6.0.3 on Windows Server 2012

Hi all,

this is my environment:

PA3020 PANOS 6.0.2

3 Terminal Servers running on Windows Server 2012 R2 Datacencer, each one having PA TS Agent 6.0.3-8 onboard.

Documentation states that Windows Server 2012 is supported by TS Agent starting from 6.0.2, i

QoS Best Practices - complete concept/configuration - big picture for QoS

Hi there,

I already read the QoS in PAN-OS 4.1 document and the QoS section in the Panorama Administrator's Guide 6.0 (English).

But there a still big question marks hovering over my head. :smileyconfused:

The examples show only one use case/qos-profile