Resolved! How to protect an https webserver in the dmz with vulnerability protection ?

Hi guys,

the vulnerability protection is a really nice feature of the PA.If the PA is able to take a look at the traffic

this should work fine.

But how does it work if the webserver in the dmz only accepts https connections ? So the possible attacker co

Resolved! Block FTP Brute Force Attemps - Threat ID 40001

Hello,

I want to block Block FTP Brute Force Attemps.

The default rule in the PA alert only in theThreat log.

I added a new Vulnerabolity Protection Rule:

Action: Block

Host type: Any (also tried Server)

Category: brute-force

Severity: Any

CVE: Any

Vendor ID:

Resolved! AD Groups Not Showing Up

I'm using User-ID and Active Directory groups to identify traffic from specific people.  The User-ID part seems to be working because Source User shows up in the logs and I can configure firewall rules using individual user-IDs. 

However, I'm having

Resolved! PAN radius dictionary for free-radius

Hi,

Is there a radius dictionary file for use with free-radius?

Regard's

Resolved! Multiple Block Pages?

Hello,

Is it possible to create/select/use a custom response/block pages for specific URL categories? For example: can I have one specific custom response page for "unknown" categories, and another block page for "malware" categories?

Thanks,

-Paul

Resolved! Best practice for committing changes in active-passive HA?

When making policy changes in an active-passive HA pair, do you usually edit and commit the policy using the active device, or the passive?  I have always made my changes on the active device, but lately I've been thinking that because the management

Resolved! Adding user accounts to Local DB via a Captive Portal web form

I was wondering if there's a way to create a web form on the Captive Portal so that a user could create their own account and have it added to the PAN Local DB via an API?

Thanks,

Jeff

Resolved! Commit issue - Error updating NAT IP pools

After updating Policy and Nat Rules, I got the follow commit errors:

- Error: Error: Error updating NAT IP pools

- Error: response from cfgpush.s1.dp1.comm.cfg-dp: Error updating NAT IP pools

This error still occurs if i disable (or even delete) the new

Resolved! Globalprotect iexplorer 9 Proxy

Hi All,

i've a globalprotect vpn to connect to office, when i'm at customer site. I use a macbook pro and vpn works well, on the other pc, a Dell with windows 7, the vpn works fine if i connect in thetering from my mobile phone, but if i try to connec