General Topics

generic:beerwineandcupcakes

Upgraded to PAN OS 5.0 last weekend, got home from the Ignite Conference and was looking through the Threat Logs and I see a bunch of entries for spyware based on DNS signatures (new feature in PAN OS 5.0).  Is there anyway to find out more informati

strange connection from PA - help me please

Hello

Today I recognised that one of my security policy droppping trafiic from IP 192.168.1.1 adddress from one of my subinterfaces to IP adersses to port 135 from other subnets.

I'm using CaptivePortal but not in that zone where is 192.168.1.1, I'm us

User showing in logs, but do not show up when creating security policies

Palo Nation,

I am trying to create a security policy based on a specific user, but when i get to the user tab nothing shows up.  I check the CLI to make sure I was getting the user-ip-mappings ( show user user-ip-mapping all).   When i get to the sec

Problem with Captive portal :

Dears,

I'm using PA-500 with 5.0.11 OS.

I would like to get help for the captive portal, HTTPS traffic isn't being interrupted while HTTP is working fine and redirecting traffic for authorization.

Please help me.

Regards,

Umair.

tftp being blocked on internal network

I am trying to use tftp to backup my cisco catalyst 3500 xl switches and it show that the PA 3020 is blocking by tftp traffice when it hits the clean up rule. Is there an easy way to allow tftp?

Policy report for PCI

For PCI compliance, I need to submit poof of our firewall policy (we use a PA3020).  Is there a standard report that I can run that summarizes our Policies, or is there a way to export the policies to a PDF or spreadsheet?  On our old ASA I could sim

Windows Radius Server (NPS) / User ID discovery through PA Agent

I'm trying to figure out a way for the PA to discover usernames / IPs for wireless clients (could be Iphones / Andriod) authenticating via a Windows 2008 R2 Radius server. Clients are authenticating through dot1x (wpa2 enterprise). Auth and everythin

Issues upgrading pa200 from version 4.1.6 to 5.0.10

I downloaded OS file version 5.0.10 and when I tried to install it, I get the following error message:

• Failed to install 5.0.0 with the following errors. SW version is 5.0.0 Error: Upgrading from 4.1.6 to 5.0.10 requires a content version of 320 or g

Portal Page for web based email?

Is it possible to have a portal page or a content page when someone uses gmail, yahoo mail, .... that would make them have to read company policy about not to use them to upload and email company data?

Custom Vulnerability (.DMG)

Hi All,

PanOSS 5.0.10

The following site (amongst others) hosts a malicious file that I want to block: Download Genieo. The file is a .dmg and I want it blocked to my Mac user estate. Rather than block the URL I thought I would give Custom Signatures >

Idle timeout since 5.0.11

Hi All,

We have an issue with our firewall. Ever since we did the update to 5.0.11 a few weeks back our RDP connections from WAN to LAN are timing out after 30 minutes of Idle time. I have checked the server settings And they are fine, the only thing

VPN is UP but no traffic flows through

Hello

I have noticed the issue a few times, when the VPN was UP but no traffic was going through. I had to clear the VPN for the traffic to flow again. Has any one had this issue and is there anyway to stop this from happening again?

When monitoring th

2 site-2-site tunnels between 2 PAN devices

Hello all,

Would it be possible to setup 2 site-to-site tunnels between 2 PAN devices? I’d like to have 2 “parallel” tunnels to split the traffic in 2 different zones.

Regards,

Stephan van der Plas