Wildfire subscription logs

I am setting up my lab PA-200 for Wildfire.  I had a question about the monitoring logs.  I understand that using the Wildfire portal, you have to configure the global settings of what meta information to send to the Wildfire servers to see that info

Where is PAN User Identification Agent data stored?

Hello,

We currently utilize the User Identification Agent to send usernames to the PA's.  However, recently, the app has been locking up.  It continues to run and send information messages in the log but it does not collect usernames.  I cannot monito

Does PA have any documentation for their IPS/IDS system?

Just went throught the PA administrator 4.1 guide and there isent much regarding how to use the IPS/IDS system. I have a spare PA-200 at the shop and wanted to learn more on how to use the IPS/IDS system and Wildfire. Can someone direct me to the rig

How to track current number of SSL VPN users?

I am looking for a way to report on the number of current SSL VPN users.  I would prefer a solution that let's me track this via snmp.  I have looked in the MIB for 4.1 and I do not see this anywhere listed in the MIB, I am hoping that someone can po

AppID Cache and recent Security Bulletin: App-ID Cache Pollution

Hello Everyone,

I was having a closer look at the APP ID cache pollution issue that was addressed in the above mentioned bulletin.

It states that , "The App-ID cache is a mechanism for caching the App-ID associated with a destination IP/port pair. Whe

Captive Portal and speed limit for users

Hello

Now I have 3 Mikrotics routers with WiFi and HotSpot service connected to dedicated VLAN on PA200. On the HotShot I have profile that limiting download/upload transfer to 500kb/s per user.

Id like to change Mikrotic routers to AP mode and on PA20

Rule to allow Client based email

I'm trying to figure out the best way to write a rule to allow mobile devices access to their personal email.  Browser based email works fine since it's mostly on 443(or 80) which we allow out.  But what about Client based email not on 80/443? For ex

Getting around url redirects and safe search

Hello,

I'm fighting a losing battle trying to get forced safe search working.  I'm currently trying to put a dans guardian and squid filter on the outside of my PA to handle just searches to as many search engines as I can find redirects for.  

Has an

Hi I am trying to configure VPN IPSEC tunneling between a Cisco Router and Palo Alto Firewall.

I need guidance on how I could go about working on the configuration. there is only two interfaces/zones on the Firewall, untrust and trust.

The trusted interface leg is connected to the internal network segment and the external interface is connecte