Checkpoint Cluster inside to PA5060 Internet Border pathway

Anyone with experience with this, please make comments:

Will the 5060 will forward traffic with a multicast destination MAC address and unicast IP address?

The traffic from the Checkpoints to the Internet VRF should be unicast MAC addresses, but the tr

About error message on PA-500

Hi All,

I got a error message when did a searching in Monitor on PA-500.

Is there anyone knowing what the mean is?

Regards,

Joy

LACP LAG

Does anybody know how to setup LACP lag on PA 5000 ver 5.04. SInce I am configuring active passive configuration and I have two core switches. I want core 1 to be my primary link and my secondary core as my secondary link from single firewall.

Thank

Faild Starting Phase1

Hi Group I am really ready to pull the hair out of my head.  

For 3 months or so, I have had a VPN between my PA-200 to a PA-500 at my remote office. All was working fine.

Last night I come back into the office to find the VPN down, and not sure why.

Variable for hostname on responsepage

Hi,

I´m looking for a varible which resolves in the hostname of the responding Palo Alto. We are currently having an MPLS network with multiple subsidaries connect, each has it´s own lokal PA and one centrale internet breakout with a PA Cluster. I wou

User certificate selection in GP client

Hi, guys

Is it possible to choose which client certificate to use in case of GP client?

I'm trying to configure certificate-base user authentication in GP, PAN OS is 5.0.

If I have only 1 client certificate on PC, everything is working fine, GP client i

Need an advice

Hello team..

I need the best or a good advice to do the correct sizing for a PAN device, yo know I don't know if there is some sizing tool that can help me, or some document to read it and understand what is the best way to do the right sizning...

than

Java Control on the PA

Hello

One of our client has the requirements to be able to able to monitor/control Java activity from users. I did a bit of check and found that in order to identify Java activity the following would need to be identified:

• File extension .class
• File ex

Vulnerability in Internet Explorer 8.

Hi,

Is there any date when CVE-2013-1347 will be addressed please?

CVE -CVE-2013-1347

http://technet.microsoft.com/en-us/security/advisory/2847140

There is nothing in ThreatVault yet.

Cheers,

Chris

Top NNN viruses and spywares prevalent today

Is there any way to get a summary of the top 500 or top 1000 viruses & spywares that are prevalent today? I am talking across palo alto deployments, not at a single site.

A related question is, when I do an empty search for viruses in threat vault, th

Dynamic Update integrity

How are the various Dynamic Updates (Applications, Threats, URL Filtering, Anti-Virus, etc.) protected against a man-in-the-middle attack?

Are they hashed or digitally signed, and does PAN-OS confirm the hash or sginature before installing them?