SSL decryption notification response page. Don't load !

Trying to set up SSL decryption these are the steps ive done:

* Configured SSL decryption rules

* Installed certificated on FW

* Installed cert on client computer with gpo, (yes it removed my warnings about saftey)

But it won't warn the user with the res

Create an App-ID for YouTube in the context of facebook

HI guys I am trying to create a custom App-ID to identify Youtube in the context of facebook, I would like to use this for a possible App QoS.

Dependency is youtube from facebook but defining youtube app in the context http-host-header is too complex,

Importing Configuration from Fortinet

Hi,

I'm experiencing a problem for importing configuration file from a cluster Fortinet 310B. After conversion, i try to load the file, and i recieve a message "File pan_conversion_l3.xml is malformed". I have tried to compare with the first configura

Web Browsing

Hi

We're about to install the web filter licence for the PA. Our current system is a proxy configuraiton via websense. Now that we're going to use the PA for web filtering is the best practise to create a security rule allowing all internal PCs direct

MAC address filter and DHCP enforced...

Hi!

Is it possible to create Policies based on MAC address instead of IP addresses?

Also, can we enforce DHCP clients only mode?  Meaning that the firewall only allows those who obtained IP's from the DHCP server.  Seems like DD-WRT got the DHCP-Author

Captive Portal page to load when user-id is known?

Working on an idea to allow a manner of login/logout for users coming through captive portal auth.

On a system that may or may not be identified on the back-end, I can load the captive portal page URL manually and set/change the user-id.

When I try to

How to transfer security policies created on the device on Panorama?

Hello,

I'am planning to transfer security policies from the PAN FW to Panorama. First the policies was created on the device, but now we are planning to adopt a configuration model in witch we will only use Panorama to centrilize the management of pol

PA-500 LDAP Checkin Timing

Does anyone know how often a PA-500 checks in with LDAP to determine group members?  I was adding users to a group that should be blocked from outside access, however, even after 10 minutes and several restarts the user can still get right out to the

PBF for YouTube Redirect to external proxy?

Since URL-Rewrite is still not an option in PanOS (I think only recently they announced that it may be on the roadmap), I've been investigating ways to redirect YouTube traffic to an external proxy server that supports rewrite.  I need to do this to

snmp oid

I am workig with oidview, and trying to find an entry for vpn tunnels.

show vpn tunnel

show vpn gateway

show counter interface (tunnel.x)

is there any oid's to cover these command line items?

PA 5050 Upgrade to 4.1.X

Today I upgraded my PA 5050 to 4.1.0 and it was sucessfull. But when I tried to upgade from 4.1.0 to 4.1.3.or 4.1.4 i got an error message that the file will not upload as the file is invalid.

Any idea why it is giving such error.

Thanks

Email Server profile configuration

Is a local email server, such as Exchange, required to schedule email reports? I've tried to set up the sever profile and send test messages to a web email server with no success. If a web email server can be used what will the server profile config

Does NetConnect support WinXP 64 bit?

I see https://live.paloaltonetworks.com/docs/DOC-1409. There is no information that NetConnect can support Windows XP 64 bit. I currenty use PA-2050 with PANOS 4.0.5, NetConnect 1.3.2. What should I do next step? Thank you in advance.