PA to Cisco 5505 VPN tunnel

When trying to configure a site to site VPN tunnel from a PA 3020 to a Cisco 5505 firewal I am getting th following messages on the Cisco firewall

received encrypted packet with no matching sa dropping

all ipsec proposals found unacceptable

VPN Tunnel Monitoring

What is generally used for a tunnel interface IP?  Can it be arbitrary or must it be an IP that is part of the tunnel?  I've read the docs on the site, but they don't say all that much about the interface IP itself.

Thanks!

Not packet returned via subinterface

Lan2(trust zone-172.16.10.0/24)-> internal  -                switch from trunk->       (eth1/1-172.16.10.100)PAN FW(eth1/2-192.168.1.104/24)->(192.168.1.1/24) DSL modem(untrust)

Lan2(trust zone-172.16.20.0/24)->connected thro. mpls ->                 

Email containing detailed information when a download takes place

Hi everyone,

I've read the user guide and searched around here but I'm not able to find an easy step by step guide. I'd like to setup/receive an email from our PAN whenever a download takes place. We currently receive other threat alert emails etc. b

RSA Risk Based Authentication

Hi all,

Recently I've been doing some research to secure our corporate vpn access with RSA SecureID or something equivalent.  In my discussions with RSA, it seems they have a token-less risked based authentication engine that does not require users to

Global Protect unusual login message

Hi,

My client found log message and shows he log in successfully, but actually he did not.

He’s running “on-demand” mode and he confirmed it’s not connected.

The only thing he did is turned on the laptop, nothing else.

I knew the Global Protect will be s

device group changes not survive panorama reboot

hey

is anyone else experience that is you are doing changes in device group / template and only commit on the devices (not panorama) then if panorama reboot it does not save your changes and any audit logs?

Meterpreter not detected?

Hi,

I have a PA3020 installed and operational in my enviroment.

I have a vulnerability profile (using "default" actions for detected threats) created and applied to a security policy that covers all zones.

I decided to do some testing and simulate an at

PAN-VM issues, support license not working

Good Day

The support license key seems to be invalid. It's weird because that is the license key I got when I registered it. But in the virtualization guide, it mentions that you have to apply a

capacity auth-code, even on the support site where I regi

M100 quota command

Hi,

could anyone share which command can we use to see disk usage detail for M100 ?

Thanks.

smtp server profile authentication

Please tell me whether smtp mail server report profile have username/password authentication?

or we have only domain name/server ip option to configure this profile?