to NAT pool or not

Hi all,

We have a brand new 2050 that is going to be used to support a school district with about 5000 students.... so we expect, eventually,  to have about 5000 to 6000 hosts going out to the internet. And we have access to a full class C public bloc

QoS in specifig configuration

Hello

My network looks:

ISP (25Mbit symmetric) is connected to Juniper SSG-140 with two interfaces:

- A

- B

Behind B there is PA200 and two serwers connected by switch to B interface of SSG.

I have to use QoS on SSG. I put 25Mbit limit on untrust interfac

SSL traffic mis-identified as TOR

Hi,

Seeing over the last few days traffic going from our users (various different users in different locations) to IP addresses in Google's range (74.125.0.0/16) being identified as TOR, and subsequently blocked - traffic is all dest port 443.  This i

Delete user out of the user agent via API

Hi.

I would like to delete a specific user out of the user agent cache via the XML API. Is it possible to do this when the ip user mapping was done by the agent itself (get the user via DC or exchange login). I enabled the user id XML API on the agent

Report Management via the GUI...

I sent the following in to our VAR/SE for a product Enhancement. If you feel the same, I hope you can request this also. What are your thoughts on this request?

The Reporting structure on the PA GUI is set up to MAKE lots of reports, and/or auto-gener

SSL Decryption with Mutual (2 Way) Authentication

Hi,

I have traffic that uses mutual (2 way) SSL Authentication that I would like to decrypt. I was able to decrypt when just using the server certificate, but when I add the client certificate it no longer decrypts (the connection still works though).

Global Protect bugs/enhancements

I may be doing something wrong on my end, but I have a few things that could improve the product a bit.  I am using the latest version 1.2.3-6.

1) When using On-Demand basic mode I cannot click File > Connect.  The option is grayed out.  However I can

Authentication after blocked page

Dear All,

If I have two groups of users, one with more restrictive access to the internet via URL Filtering than the other.

If the more restrictive group access the internet and receive a block page as their policies do not allow access to that resourc

SSL Decryption

Hi All, I have an issue with SSL decryption and using the inbuilt CA. What appears to happen is that various parts of SSL websites don't trust the CA on the palo alto and as a consequence sites do not load fully and report various certificate issues.