Resolved! Tracking application change in a session

Does anyone know if it's somehow possible to track application changes in a session?

Let's say an application in a session first is identified as web-browsing, then facebook, and finally facebook-chat. Maybe not a realistic example, but you get the po

Resolved! PA-2020 Software Upgrade

Does anyone have experience when upgrading from version 4.1.6 to version 5.0.0? I am wondering (outside of the release notes) if anyone has seen bugs.

Thanks

Resolved! Any way to disable split tunnelling for my vpn clients ?

Hi all,

Just wanna know if there is an issue to disable split tunneling for my vpn clients. I want that ALL the traffic goes through the vpn tunnel, and nowhere else.

Regards,

Karl

Resolved! Palo Alto Support Contracts

I recently purchased a firewall with a 1 year support contract. I received it three months ago and haven't had time to deal with it. When is the official start date of my support contract? Do I have a certain amount of time to register the box before

Resolved! active / passive setup(connected switch/router arp cache timeout)

I was starting to setup an active/passive system and once the HA was enabled, I lost connection to and from the internet.  I found it was an ARP cache on my router.  Now if my PA's failover the outside IP will startup and issue a new MAC for that IP

Resolved! User ID Agent Ignore

I have user id agent 4.1.6-5 on PAN OS 5.0.1.

Is it possible to tell the agent to ignore certain IP addresses, I know how to do with the users by using the ignore list text file.

Resolved! MAC address spoofing

Does someone know if it is possible to spoof/change the mac-addresses from a VM PAN 100? Our ESXI Vendor won't enable Promiscuous Mode, so we don't have data through our Ethernet ports. I guess maybe, when I can spoof the MAC address, it might be wor

Resolved! GlobalProtect portal corrupt.

Running an 2050 Active Passive HA pair.

Yesterday I noticed that I couldn't login with the Globalprotect client. After some investigation I noticed that I could log in on the Globalprotect Portal web page, but after the login the page which offers the

Resolved! How to generate a CSR from a Self Generated Palo Certificate

Hi There,

I am struggling to generate the CSR for a self generated certificate on a Palo firewall (this is the first time I am doing it).  I did look into all the documents in the knowledge base and they seemed to be very confusing. 

I have generated

Resolved! ICMP Source-Quench?

Hi,

In Cisco ACLs, they have the option of adding rules like "access-list OUTSIDE extended permit icmp any any source-quench". Does Palo Alto have a way of distinquishing ICMP message types? I've tried looking in the application library, and ICMP show