General Topics

Peer identifier for azure is required to be set

I have got a tunnel set up successfully to Azure but have had to specify the peer identifier by IP address which will not be very stable. Azure support advise that the peer identifier set by azure is dynamic and that some firewall vendors (Cisco, Ju

...

Slow download for Metasploit Updates

I have question and I am not sure if I am posting this in the right place. I am also new to Palo Alto firewalls. I have a lot of experience with Cisco and SonicWall so you'll have to excuse me if I sound a little ignorant concerning Palo Alto at the

...

about user-id info

Hi All,

Is any one knows, what is the correct information that should be selected in the Poliies -> Security -> Source User columns, ldap format(e.g cn=users,dc=abc,dc=com) or abc\users?

I can see the format in the command line with command " show use

...

Resolved! Maximum profiles on PA-500?

We recently received an error on our machine that says:

"Number of profiles exceeds vsys capacity (50)".

Is 50 a hard limit or is there a configuration somewhere to increase this number? We don't see anything in the documentation about max profiles

...

Resolved! How to export downloaded software img from PAN-device ?

Hi,

can we export downloaded software img from PAN-device ?

IPSEC Site to Site tunnel With Watchguard Firewalls as peers

I have a problem with the PAN keeping a tunnel connected to Watchguard firewalls.

Phase1

Main Mode

IKE Crypto: MD5-3DES-GP1

Lifetime: 8 Hours

DPD 5-5

Phase2

IPSec Crypto: MD5-3DES-NoPFS

Lifetime 8 Hours

LifeSize 128 MB

Proxy: Local 10.0.0.0/8 Remote: 192.1

...

Resolved! Slow Identification

We are currently in the process of switching over from a Cisco ASA to 2 palo alto firewalls in high availability. We currently have one in transparent mode to provide web filtering. The other we are using in a Layer 3 configuration. We are testing so

...

Showing concurrent user in PaloAlto

Does anyone know how to show concurrent user in PaloAlto? I only able to see the concurrent session in Dashboard but not concurrent user.

Resolved! URL Filtering Continue and Override Page

I want to use Active Directory for all blocks and overrides. We currently have a Barracuda that presents a block page that presents users with password entry that utilizes Active Directory. Certain groups are allowed access. Can this be done on the P

...

Resolved! Authenticated NTP

I checked the Admin guide 4.1, but I didn't see anywhere to set NTP Authentication to its servers or peers. Is this functionality even available in PanOS? NTP Authentication preferably via PKI in NTP v4, SHA-1, or MD5.

Thank you.

Resolved! How can I see users hitting a certain NAT rule?

Is this even possible? I know I can see the security rules being hit in the logs but what about the NAT rules?

Resolved! Office 365 App detection

Hi,

I was wondering if there are any plans or a method how to detect Office 365 traffic?

We have no URL scanning license on the box, so we depend on the App detection method.

Because all traffic is a SSL connection, PaloAlto reports the traffic as gene

...

We had a security incident on a corporate notebook there were a lot of dropped "ZeroAccess.Gen Command and Control Traffic" in the thread-log.

We scanned the laptop with different virus/spyware scanners and fou

...

Discussions

Peer identifier for azure is required to be set

Slow download for Metasploit Updates