Guest VLAN issues with externel services that we offer

Here's what we need to accomplish:

We have subnets on our networks that need to use our external DNS server (they are Guest VLANs for our WiFi networks). This traffic is visible by our paloalto firewall with layer 3 adresses (10.XXX.30.0/23). When we

Inline PA vwire on inside interface of Cisco ASA HA/pair inline

I am currently running a pair of Cisco ASA 5520 in HA.   I want to protect the traffic going inside with an inline wire on the inside interface of Cisco ASA HA/pair as it travels to the LAN.  A pair PA-2020 are configured in Active/Standby with the w

Global Nat

How can you determnine what the global nat address is on a firewall?

Wire shark

I am trying to troubleshoot why I am having issues with a certain VPN router device through the PA 3020 firewall, This is the message on the packet capture

ISAKMP Identity protection (main mode).

I am new to firewall and if there are any other troubles

Ping

Can you send ping test from the PA and if so how is that done?

Stability Issues with 6.01

Hello,

since our pa 3050 (HA Active/Passive)  is running 6.01 i discovered some issues: The device server sometimes hangs, there is no other option than restarting it (debug software restart device-server) This happens approximately once a day. In thi

Does v5 or v6 User ID supports Windows 2012 R2 AD

Dear All

Does anyone knows PAN User-ID supports Windows Server 2012 R2 authentication or not?? I cannot find any information from the KB or document about windows 2012 version.

Cheers,

Carsen

Is it possible for a web page to discover if SSL decryption is active?

DUPLICATE POST - please see Decryption: sec_error_reused_issuer_and_serial for further info.

----

Hi folks,

We recently re-activated SSL decryption in some of our branch offices. Now of course reports are coming in that certain web pages can't be displa

Panorama M-100 GUI timeout

I have a problem with a Panorama M-100 running 5.1.4, where sessions in the web-gui seems to time out before they have reached the "idle timeout" configured under Panorama/Setup/Management/Authentication Settings.

What happens is that after being ina

Global Protect Radius Child Domains

Global Protect using Radius works perfect for users in the parent domain. It will not work for users in child domains.

I worked with Palo Support for several hours and they believe the issue is a setting on the Radius server but they do not know what

Skype performance tuning

Good morning everyone,

I've been testing a PA-200 unit here and I have a certain issue with Skype, which is mostly due to Skype being very weird about how it uses the network.

Most threads I found around here are about blocking or controlling Skype som

VPN & SSL VPN questions - A/A cluster

I'm starting to setup an Active/Active cluster And I'm looking at using arp-Load-Sharing as that seems to be the fault tolerant/load balancing one.

So here's the question will SSL VPN (web interface) & site2site vpn's (with cisco and sonicwall devices