how to block skype for 'trust' zone and allow for 'trust2' zone

Hi,

I'm trying to block skype for one group of users (whitch are in 'l3-trust' security zone) and allow for second group (which are in 'l3-trust2' security zone).

Both zones: 'l3-trust' and 'l3-trust2' are source-NATed to 'l3-untrust' zone, one interfa

Captive Portal on connecting to SSID rather than via Browser for Apple devices - is it possible?

Hello Everyone,

I was just wondering if it is possible to have captive portal pop up on connecting to a SSID rather than having the captive portal page upon accessing any website for apple devices?  Captive Portal works on accessing any website using

AD Groups in Firewall Policy - Inconsistent Behaviour

I have two issues with managing firewall policies when using AD groups; running 4.1.7 - so am using the 'on-hardware' group retrieval rather than the PAN Agent.

1) When adding new groups to be mapped they do not appear in the GUI i.e. cannot be select

Production Code Recommendations

I am getting ready to move two 5050s into production and would like to know what release code to start with based on your recommendations. I assume that 4.1.10 would be the best choice, but 5.0 has been out for a little while now. I normally wait for

Best Practises from a Performance perspective.

Hello Everyone,

Could someone shed some light on configuration best practises that can optimise performance from GUI , Security rule processing etc ?

For example , I was told that using a App Group with a large number of Apps to whitelist might have an

security policy for GlobalProtect

Hi

which applications/services do i have to enable for GlobalProtect (standard license). I can't find any documentation on this.

actual SW: 4.1.5

Thank you

What possible reason cause MP CPU higher after integrate with Panorama

Hello,

As this article's title, I setup a Panorama to collect the logs from a PA-2050.

But, when I complete the integration between Panorama and PA-2050, the CPU percentage of  Management Plane become higher.

Before the integration, the MP CPU is lower

File "Block" page showing when file "Block and Continue" set

I have an issue where I have set a 'Continue' action in a file download profile, but the file Block page is being shown instead.

There is a article on here saying to reset the relevant Response Page setting, but that does not work as the page being sh

Block-ip action for blocking brute force ssh doesn't seem to be working

We've been noticing that we are getting quite a bit of brute force ssh attempts on our system, so we decided tonight to put in a rule that blocks those attempts. I took one of our existing policies that just logs everything, and added an exception th

PA200 with DSL (Dynamic DHCP Client) causing slow web browsing and "incomplete" application in traffic monitor

Ever since I put my PA200 inline at my house, my internet has been running really slow.

In troubleshooting, I learned about the "More Runtime Stats" link in the virtual router.  I needed this info to determine what traffic should be considered "intere