General Topics

Resolved! URL categories not being resolved

Hi,

Our PAN 2020 is setup for URL filtering. After a reboot  we're now getting excessive matches for the "unknown" category. It appears URLs are not looked up on "Dynamic DB" and "Cloud DB".

Ex:

(active)> test url www.nds.org.au

www.nds.org.au society (D

Resolved! User Activity Report

I was wondering if there was a way to either use the Custom reports to look exactly like the User Activity Report, and how would I script that or can I fit multiple users into the User Activity Report? This is what I want the end result to be, have

Resolved! NAT Bidirectionnal,IPSEC NAT-T and secondary address problem

Hello,

I am trying to have a Cisco router establishing an IP SEC Tunnel behind a pao alto firewal configured in L3 Mode.

The tunnel should be established on a secondary address on a sub interface

Eth 1 Public, Two Sub interface 1.666 and 1.667

eth1.666 a

Resolved! Captive portal with Client Certificate Profile and fallback to radius/kerberos

Hi,

I have the following use case for a large customer :

1/ Captive portal authentication with client certificate profiles.

2/ When the client has no valid cert, an authentication fallback mechanism is required with username/password ( radius or kerbero

Resolved! Virus definition upgrade server issues - anyone else?

Hi.

I've just noticed that my PA's can't download the latest virus upgrade from Palo Alto.

Every time I try, I get "Failed to download due to server error - please try again later".

I've been getting this error for several days now - is anyone else seei

Resolved! 4.0 to 4.1 Upgrade Path

I have 22 firewalls plus Panorama that I am looking to upgrade from 4.0 to 4.1.x. Part of this will also require the upgrade of the User-ID Agent on a few servers.

I have seen a few threads saying that Panorama needs to be a higher version than the fi

Resolved! iOS 6 and IPSec VPN

We have iPad 3's with IPSec VPN working with the Palo Alto 5020.  We upgraded one iPad from iOS 5 to iOS 6 and now the VPN is not working.  I know iOS 6 just officially came out this morning, but anyone else have this problem? Here's what I'm getting

Resolved! Add second ip to tunnel interface

Hello All,

I am wondering if it is possible to add a second IP to a tunnel interface. I want to add some extra IPs to a tunnel interface (/28 subnet). To allow a remote party to connect to some servers in our internal network using NAT over IPsec tunn

Resolved! File Blocking and the Continue Action

Hello,

I understand the main purpose of the continue action, and the additional level of effort the end user must take to ensure they intended to download a specific file.  Can anyone verify that the continue feature works if someone was trying to upl

Resolved! Can't get internet access, routing problem?

I have worked with many different types of firewalls, but this is my first time with the Palo Alto 5050. Currently I have a basic configuration, a single internet connection and a VR with a default route, properly addressed interface, policy that all

Resolved! Does the current PAN-OS support public-key site-to-site VPNs?

Hi all!

Going through the documentation and forums, it doesn't seem the current Palo Alto PAN-OS support public key site-to-site IPSec VPNs. That is to say, there's no support for certificate-based IPSec VPNs like the Cisco ASA has.

Are there any plans