General Topics

Wire shark

I am trying to troubleshoot why I am having issues with a certain VPN router device through the PA 3020 firewall, This is the message on the packet capture

ISAKMP Identity protection (main mode).

I am new to firewall and if there are any other troubles

Ping

Can you send ping test from the PA and if so how is that done?

Stability Issues with 6.01

Hello,

since our pa 3050 (HA Active/Passive)  is running 6.01 i discovered some issues: The device server sometimes hangs, there is no other option than restarting it (debug software restart device-server) This happens approximately once a day. In thi

Does v5 or v6 User ID supports Windows 2012 R2 AD

Dear All

Does anyone knows PAN User-ID supports Windows Server 2012 R2 authentication or not?? I cannot find any information from the KB or document about windows 2012 version.

Cheers,

Carsen

Is it possible for a web page to discover if SSL decryption is active?

DUPLICATE POST - please see Decryption: sec_error_reused_issuer_and_serial for further info.

----

Hi folks,

We recently re-activated SSL decryption in some of our branch offices. Now of course reports are coming in that certain web pages can't be displa

Panorama M-100 GUI timeout

I have a problem with a Panorama M-100 running 5.1.4, where sessions in the web-gui seems to time out before they have reached the "idle timeout" configured under Panorama/Setup/Management/Authentication Settings.

What happens is that after being ina

Global Protect Radius Child Domains

Global Protect using Radius works perfect for users in the parent domain. It will not work for users in child domains.

I worked with Palo Support for several hours and they believe the issue is a setting on the Radius server but they do not know what

Skype performance tuning

Good morning everyone,

I've been testing a PA-200 unit here and I have a certain issue with Skype, which is mostly due to Skype being very weird about how it uses the network.

Most threads I found around here are about blocking or controlling Skype som

VPN & SSL VPN questions - A/A cluster

I'm starting to setup an Active/Active cluster And I'm looking at using arp-Load-Sharing as that seems to be the fault tolerant/load balancing one.

So here's the question will SSL VPN (web interface) & site2site vpn's (with cisco and sonicwall devices

Wildfire Threat Type

I clicked on the Magnifying Glass icon of a Wildfire Submission Log entry and there are related log entries that shows a Threat Log Type Wildfire. When I went to the Threat Log and tried to filter on Type equals Wildfire nothing comes up. As a matter

Clientless User-ID problem

Hello.

When debugging clientless User-ID I've noticed a strange entry in useridd.log log file. I'm trying to connect to 2 AD servers.

It says:

2014-04-07 10:44:09.875 +0200 Error:  pan_user_id_win_log_query(pan_user_id_win.c:1319): log query for server1

Stopping email alert for Syslog related Logs.

How stop email alerts for syslog related logs? For example Email alert is generated for every one hour that syslog server is active.

Note: The log severity level for email alert is configured for high and it should be changed.