I have problems uploading files larger then 2709 bytes with FTP since install release 388

I have a PaloAlto firewall PA-2020 with Software version 5.0.3. Since the installation of 388 Application version on 13/08/2013 that FTP protocol blocks uploading files larger then 2709 bytes. I'm using filezilla application for uploading files.

Thank

Mngmt CPU Raises %51

Hi All,

My PA5060  mngmt CPU raises %51 around and after a few mins later it goes down to %10 but it's happening  oftenly

I think it's not normal and i want to solve this problem or i wanna learn what is/are the reason about this issue. Can anyone help

Office 365

Hi,

I have a PA-500 with url and threat license and i need to manage office 365 traffic (redirect to a dedicated wan connectivity and manage bandwidth).

I need also to track and report the amount of Office365 traffic.

I haven't finded the application on

session id and information

Hi,

When we look from traffic logs to a session detail and to same session from cli (show session id)

we see completely different information except for id(different source,destination,application etc..), I've seen this for many devices different times

How to import config from rancid

Hi,

We use rancid to take backup of out PA firewalls.

The config saves as clear text, without xml tags.

It this possible to import to a new PA?

PBF vs Static Route

Hi,

I have traffic going from A.A.A.A to B.B.B.B,

The problem this is working with the static route. But I need to use PBF instead for monitoring reasons. When removing the Static route and using PBF traffic is not reaching the target. I am configuring

How are passwords and keys stored in PAN xml config files

Are they hashed before storing them in the config files? By the looks of them, it seems like the PAN appliance is storing them in an encrypted format. If so, can they be decrypted?

For example, an OSPF key is stored as follows

"-AQ==xxxxxxxxxxxxx=xxxxx

Allow Youtube for some persons and blocking it for others

Hello,

I want to allow Youtube in general for a few users. For other users it should be blocked.

I created a rule that all allows the youtube-application for a few users that are specified with the help of an active directory group. My second rule does

Akami in log files as actual destination requested

My URL logs show 100's and 1000's of hits to CDN Akami websites.  Is there a way that I can prevent this and instead show the actual requested URL from the user in the logs instead?

SSL Decryption - warnings during commit

I had setup GlobalProtect with a third party certificate that I chained together, and it works fine with no errors.

Then, I began testing SSL Decryption yesterday (with an initial goal of decrypting SSL for Facebook so that I could block Facebook game

Wildcards in URL filtering for SSL-decrypt bypass

OK, so this is driving me mad and I'm obviously missing something.

I've created a custom URL category in which I wish to drop URLs that will bypass SSL decryption.  In this I want to use wildcards, so that all sites for a particular company can be byp