Blocking Apple iTunes Radio

If anyone is interested, I was able to block iTunes Radio by adding the following URL's into the Block URL list of my URL Filter:

streamingaudio.itunes.apple.com

radio.itunes.apple.com

pri.kts-af.net  (not sure if needed, but found a lot of people menti

PA-500 differents implementations scenarios

Hi All,

     Please I need your help to prepare a design document for the implementation of a PA-500 for one of our client, following is the existing architecture of the client site:

The customer need is to control the Internet flow so they can do the

VPN Tunnel Comes up Automatically

Hello,

I have a VPN tunnel between a Palo Alto and a Juniper SSG. Even when there is no traffic from the end devices coming through, the VPN tunnel somehow stays up. I would expect the IKE and IPSEC SA's to time out and stay down until traffic is pass

Alert Notification in Panorama

Hello,

Can you please let me know hwo to confirured the alert in panorama for Vulnerability Protection, Antivirus or Antispyware .

Need it very urgent . Please help.

Thanks

Amber

User ID agent is getting Stopped Automatically

Hello ..

We have PAN user ID agent version 4.1.8 -2 installed in our server .

The service is getting stopped automatically . When try to stop the process from services.msc in Windows server it gives the error that service is still running .

Need to stop

User Activity Report Browse Time --:--:--

I am running some user activity reports and for some sites the browse time is --:--:--

What does this mean? Does it mean that PA was unsuccessful at gather the browse time, or does it indicate an advertisement in the page, embedded content, or somethi

Export Logs and Read Exported Logs in PA?

I need some clarification on exporting logs and how to read the logs (if possible) in PA.

1) From reading the discussion forums I see that SCP export only works if the target is a *nix system.

     a) Is this correct?

     b) Why isn't this in the help

I disable a user on ldap ,but he can access the destination as before

there have a user on the ldap , I allow he access one website in security policy .But when I disable this account on ldap srver , he can access the website as before , what can i do ?

消息编辑者为：Achates Ray

Any way to cange the MAC Address on the Untrust interface in PanOS 4.1.2?

Hello,  Im new to PaloAlto and am using PanOS 4.1.2 on a PA-500.

I was wondering if there is any way to change the MAC address on the WAN Interface so that my IP address stays the same.

Currently I have several systems in my home lab and if my MAC add

Implementation of PA-500

Hi All,

     Please I need your help to prepare a design document for the implementation of a PA-500 for one of our client, following is the existing architecture of the client site:

The customer need is to control the Internet flow so they can do the

PANOS 6.0.1 Dataplane CPU spikes that were not present in 5.0.11

Yesterday we upgraded to PANOS 6.0.1, and we're seeing something new.

Here is the dataplane of our PA4020 when it was running PANOS 5.0.11, from two days ago:

Here's the same time frame, a day later, but with our PA4020 running 6.0.1: