General Topics

Authentication using LDAP/AD

Hello,

I'm trying to get LDAP authentication working using Active directory. I have created an LDAP server profile, an Authentication Profile and Group Mapping settings profile. When I'm setting up the Group mappings I can go in and see the entire dir

...

override response page

Hi all

When accessing a URL category that requires password in order to continue (override) , the return page from PA comes in https and not in http as in regular “Continue” or “Block” page.

Is this behavior is by design? Can it be change to regular h

...

arp limit

hello whats the arp limit on the 500 device? is it 500? if so whats a work around? mark

How to configure the PA a captive Portal Group-Mapping,

How to configure the PA a captive Portal Group-Mapping, I did not find any documentation on this, my configuration is to use seerver profile LDAP authentication server to call the AD domain user, I would like to call the domain account of the firewal

...

Application Block Page for client-server based apps that have web interface

Does anyone know a workaround to get an Application Block Page when accessing a client-server based app using it's web interface... i.e. Dropbox?

Thanks...

Panorama Licensing

Do I still need to purchase a license for Panorama if I only want to make use of the log forwarding functionality. It would be useful if I could forward logs from my PA-4020 to a Panorama installation so that I can store more than a couple of days wo

...

Resolved! Looking for Rule Groups in the firewall policies.

Other firewall vendors provide the ability to group rules together based on whatever criteria you want. I find this very useful in organizing an often confusion rule base. Any plans to add this ?

Resolved! Port masking

Hi Everybody,

Is there a way to implement port masking on a PA-200?

I have an application that comes from the internet on a different destination port than the default port and I need the PA to change this port back to default value.

Example:

Http reques

...

Resolved! How to 'logout' from support portal

Hi all,

We can't find the 'logout' option in new version support portal...

Is it web page issue？

Thanks.

Resolved! Mapping all the rules, interfaces etc..

Is there any way to export or view all the currently configured Rules, interfaces, tunnels etc.. outside of the Palo Alto Admin webpage?

What I want to do is be able to get these in some sort of spreadsheet or database so that I can refer back to it

...

Resolved! PANOS 4.1.0 has a major FLAW

where do should I get support to fix a critical ad major issue with PA 5050 running 4.1.0.

When issuing "commit" command the unit drop connenctions and teh arp tables get corrupted for about 30 minutes.

As far as PaloAlto Support the issues is major

...

Custom Response Page Variable "<Cookie/>"

Hello All,

While building custom response pages for our PAN's today... I noted that the factory default code for the File Download Continue Page used the variable '<cookie/>. (see code below)

I reviewed my copy of "Custom Block Pages Tech Note,

...

Resolved! Remote Management of PA-200 through SSL-VPN

I would like to be able to reach the web management interface and the CLI of our PA device, while connected through the Global Protect VPN. The networks are on separate segments, and I have access routes and rules in place to allow the traffic to the

...

Resolved! Rockmelt

I'm doing some test on pa500 in our site, and trying to apply some feature like block of facebook app i see a strange behavior. First of all the policy of decrypt and bloking works correctly because the facebook is in "read only" state without possib

...

Resolved! PAN-OS HTML Variable <user/> Format?