PA installs - the missing details

Hello all,

since I'm just getting to grips with the support processes here apologies if I've missed a nice handy guide anywhere about this.  My various questions don't seem to be covered in the Tech Notes though.

I'm installing some Palo Altos in to an

Security policy rule to allow users to download from certain URL's?

Just implemented a 3020 and have many Engineers looking to download EXE, ZIPs and ftp to sites all over the place.  I am looking to allow them to use these services to certain URLs only.  i have tried to create a custom URL list and File Transfer gro

Do I Understand Profile Exceptions?

Hi,

Created a Vulnerability Protection profile.

Noticed that I was seeing a lot of "Microsoft Windows Registry Read Attempt" entries in the threat log. These appear to be benign. So I edited the profile, clicked the exceptions tab and checked the "enab

Upgrading to Pan OS 5.0.4 Error

Hi All,

I just attempted to upgrade my existing pan os 4.1.2 to Pan 5.0.4. Everything went fine but my main link to router was down and so there is no internet access. I restarted the router and it was still no link. So i downgraded back to 4.1.2 and

botnet-domain alert in GUI

Hello,

on the cli show command I see under "XX Anti spyware" profile the botnet-domains policy but I'm not able to find it on GUI under object-securityprofiles -> antispyware.

Where botnet-domain behavior is configured on GUI ?

thank's .. here below the

Reverse-Proxy

How can I use  Palo-Alto as reverse proxy. Suppose I have a DMZ zone that has all the web servers and I want the DMZ interface to act as reverse proxy.

The untrusted interface facing the internet would do the NAT translation. Then send the traffic to

Sessions aging , scaling , app tricking etc

Hi,

Could someone briefly describe the significance of these values shown in the output for "show sessions info" and how they may be tweaked from a performance perspective ?

-

Session accelerated aging:                       True

  Accelerated aging thre

Vulnerability Vs Successful Expolit

Hi,

I would like to know how easy or hard it might be to link a vulnerability to an actual successful  exploit.

The threat details are provided below and a screenshot of the actual threat incident seen in attached. I am assuming this is just a random

Local admin accounts on PAN firewalls?

Hi,

We use Panorama to manage or configure individual PAN firewalls. There is however times when we need to connect to the individual firewall for troubleshooting or faster response while monitoring. The Panorama is configure with Authentication Profi

Need help in OID

Hi Guys,

            I like to know the exact OID to find interface IP. Using RF-1213 MIB, I am able to find the bytes transferred or up status, how how do I find the IP of an interface using an OID?

Regards,

M.Viswesh