General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Resolved! PAN 5.0.3

When will PAN 5.0.3 be available?

Resolved! Issue with facebook pictures being blocked

Hey guys got one I am stuck on. We are not blocking facebook at the moment and it was working just fine until Friday afternoon. No config changes were made. No updates to the PA5050's we have. Facebook comes up still but certain pictures on it will n

...

Third Party VPN Clients

There is an option for 3rd party VPN clients in the interface and there used to be articles on Cisco Anyconnect as an option for 3.1. We have tested this without the use of these parameters, how do these adjust the communication to the firewall, is

...

Resolved! Can VWire use aggregate links?

As above.

A.

Resolved! Reason for VSYS

Has anyone found a situation where VSYS is ever truly the best course of action when deploying the firewalls. I have been continually asked about this feature with very little cause to deploy the firewall in this way in most situations. Can anyone s

...

Resolved! ThreatID and CVE

Hi Out there. For users of SIEM, some have Vulnerability scanners, anti-virus and other tools reporting CVE through syslog. In most cases the logs from PAN have threatID, other than the special Splunk integration does anyone know of a way to get th

...

How did your SSL Decryption deployment go?

We are in the process of making a case to deploy SSL Decryption. While I am sure this will happen, predeployment, I would like to hear any horror stories or even success stories on how your deployment went. Also any do's and dont's would be fantastic

...

Application web-browsing blocked using ssl decryption

I've defined a simple rule for acces to a ssl-crypted website using application filtering.

Also all ssl-crypted access to that site will be decrypted.

The running Software ist PanOS 5.02.

When I define a rule for access to that destination and leave the

...

Sizing an appliance

I commented on threads outside the knowledgebase on sizing an appliance. I thought I would start the discussion here as well. Usually we run the tap mode install to get the stats and found all the counters relevant to sizing the sessions etc by SPAN

...

PANOS 4.1 vs 5.0

Which version PANOS is better 4.1 or 5.0

I have installed 4.1.8 on PA-500, should i upgrade to 5.0.2?

How do you set up and configure Global Protect on your PA200

Starting with, Do I need another external IP? How do I configure the portal and gateway. If the IP is 216.96.15.69, for example. The Internal Firewall is 10.10.0.25.

Server error : op command for client dagger timed out

Hi,

Recently when performing a show session all I recieved a response:

Server error : op
command for client dagger timed out

After a few minutes this resolved itself. This was on code 4.1.10. Could this be related to a memory leak and the system didnt h

...

I want my telnet back!

Don't get me wrong, I really like PAN-OS 5, but why did they take my favorite troubleshooting tool away?

The PA is the new device in our environment and if anything is not working all blame on the 'new guy'.

User claims: 'since we have the new firewal

...

PCAP On threats.

Can someone explain why PCAPs on threats would be useful or how to download?

File zeroization error: No such file or directory

Does anyone know what this means? I've never seen this before, but I got a bunch of these errors after committing a change on my passive device. I changed the network interface settings and I just recently upgraded to 4.0.13 from 4.0.11.

Discussions