RDP with ssl vpn issue

Hi：

    I have two probelms about ssl vpn. I'm using PANOS 3.1.6 and vpn client version 1.2.

    1. I'm using win7 64 bit and following the check list, so i can connect first time. Then I disconnect ssl vpn and try to connect again from my notebook, it

IPSec VPN using RSA key on the other site

i have a problem regarding the configuration of PALO ALTO IPSec VPN because the other remote sites are using RSA key Authentication for IPSec VPN. They bougth Palo Alto to change there existing firewall Astaro. And now were in the implementation to m

PA-2050 have problem performance CPU dataplane. (80 -95% all time)

PA-2050 have problem performance CPU dataplane. (80 -95% all time)

Deploy paloalto 4 zones (inside, outside, DMZ, Server)
Enable IPS, Antivirus, Antispyware
firmware version 4.0.7
Throughput avearage 200 - 250 Mbps
Connection 20000 - 30000 session

Testing

How to enable a "drive-by" feature? Where can I find any references to this?

How to enable a "drive-by" feature? Where can I find any references to this?

is it possible to apply user-id at SBC environment?

I had a test related to User-ID with PNA Agent for AD.

This environment has a little unusual and It is called a SBC (Server Based Computing).

I tried to apply User-ID with PAN Agent for AD but it was not working as my intention.

Clients must access

"Application is already in use" commiting custom application addition

Hello,

I am trying to import a few custom applications via XML files I downloaded from my PaloAlto vendor.  I did try this before with some that I found here in this forum when running PAN 3.1.  I am now on PAN 4.1 (though I may have seen this problem

Traffic with no data (???) is denied

Hello,

I have a PA 2050 device that is configured to allow specified traffic (multiple rules) and one rule that deny all other traffic (at the bottom).

When looking at the "Deny all" rule, I can see a lot of packets that should be allowed by specific r

No Rule Groups ?

Juniper/Checkpoint and other Vendors allow you to create rule groups. Basically headers to organize functional rules/policies together. I think this goes a long way to keeping you policy organized.

There's no way to do this ?

Thanks,

Justin

How to block Mozilla Updates

Hi,

Is there way to block mozilla updates in PA? I could not find an application with same.

Thanks

Asanka

LOITS

question of the way of configuration for Authenticating Administrator Using IAS for PAN device.

I’d like to apply AD Authenticating Administrator Using IAS for PAN device.

And i also installed IAS on the Active-Directory Server.

I tried to apply it follow link below, but I’ve been failed.

https://live.paloaltonetworks.com/docs/DOC-1196

As addition

migrate local objects to Panorama shared objects

Hello,

I have 3 PA-500 that are running as stand alone devices. I've purchased Panorama as I am planning to add more devices. Currently my 3 PA-500 have about 150 objects that I would like to import to Panorama as shared objects so I can make 1 chang