Eval question

Given a flow and properly written policy to allow Facebook and its myriad apps/widgets on port 80/443, other than the admin management overhead (i.e., having to open ports 80 and 443), how is what Palo Alto does different from what Checkpoint does?

Th

Management server restart

Hello

Today I observed that when I try to logon to my PA200 I got error "Connecting to Management Server failed", when I try to logon by SSH "System initializing; please wait...."

After few minuts a was able to logon by browser and putty.

In system logs

Guest VLAN issues with externel services that we offer

Here's what we need to accomplish:

We have subnets on our networks that need to use our external DNS server (they are Guest VLANs for our WiFi networks). This traffic is visible by our paloalto firewall with layer 3 adresses (10.XXX.30.0/23). When we

Inline PA vwire on inside interface of Cisco ASA HA/pair inline

I am currently running a pair of Cisco ASA 5520 in HA.   I want to protect the traffic going inside with an inline wire on the inside interface of Cisco ASA HA/pair as it travels to the LAN.  A pair PA-2020 are configured in Active/Standby with the w

Global Nat

How can you determnine what the global nat address is on a firewall?

Wire shark

I am trying to troubleshoot why I am having issues with a certain VPN router device through the PA 3020 firewall, This is the message on the packet capture

ISAKMP Identity protection (main mode).

I am new to firewall and if there are any other troubles

Ping

Can you send ping test from the PA and if so how is that done?

Stability Issues with 6.01

Hello,

since our pa 3050 (HA Active/Passive)  is running 6.01 i discovered some issues: The device server sometimes hangs, there is no other option than restarting it (debug software restart device-server) This happens approximately once a day. In thi

Does v5 or v6 User ID supports Windows 2012 R2 AD

Dear All

Does anyone knows PAN User-ID supports Windows Server 2012 R2 authentication or not?? I cannot find any information from the KB or document about windows 2012 version.

Cheers,

Carsen

Is it possible for a web page to discover if SSL decryption is active?

DUPLICATE POST - please see Decryption: sec_error_reused_issuer_and_serial for further info.

----

Hi folks,

We recently re-activated SSL decryption in some of our branch offices. Now of course reports are coming in that certain web pages can't be displa

Panorama M-100 GUI timeout

I have a problem with a Panorama M-100 running 5.1.4, where sessions in the web-gui seems to time out before they have reached the "idle timeout" configured under Panorama/Setup/Management/Authentication Settings.

What happens is that after being ina