General Topics

Error message for role based Administrator

Error message when role based admin user is trying to log into UI:

User does not have access to any device groups. Device groups are needed to access the 'Policies' and 'Objects' tab. Please ask your administrator to give you access to one.

---

The goal

Reconnaissance Protection

hi : In regard to the settings for Port Scans and Host Sweeps:

What counts as an event toward reaching the threshold? Is it a SYN packet or are other types of packets counted?

Thanks

Anyone tried to connect GP from iphone/ipad with ClientCert?

I'm tring to connect GP from iPhone5 and iPad4.3.3 with Client Cert Auth.

I can't see the establishment of IPSec VPN, however, I could establish VPN from Windows with same client cert.

I want to see the working sample cofiguration.

Could anyone share th

SSL-VPN on Mac can't route traffic after sleep

On many of our Mac clients that are using SSL-VPN, if they are connected to the VPN and they close their Mac's (putting it to sleep), when the mac's are awoken, they can't route any traffic. 

The only cure seems to be:

sudo route -n flush

Is there any

Data filtering by name

Is there a way to block a specific file name, not just a file extension? Is it possible to accomplish this using a custom data pattern?

GRE issues with 4.1.0 ?

Good morning,

we run PanOs 4.1.0 on a couple of new sites, but we are not able to make GRE tunnel works. The sceario is IPsec Tunnel between 2 firewalls (PA-2020 to PA-5050), GRE tunnels built inside the IPsec on Cisco routers.

IPsec is ok and ping is

Pan os 3.1.8 VirtualWire and Microsoft NLB Problems

Good morning

I have a Virtual Wire configured on a PAN-2050 with Pan OS 3.1.8 and I connect in one Interface of it a Microsoft ISA Server 2004 and in the other interface a Catalyst Cisco Switch.

This Microsoft ISA SERVER 2004 has a Microsoft Load Balan

App ID Classification

I noticed that Sophos anti-virus is classifed under business-systems/management, while McAfee, Symantec, Panada are all classifed under business-systems/software-update.

Seems to me Sophos is misclassified under the wrong sub-cateogry.

Certificate : standard, extended validation, wildcard, subject alternative name

Hello,

Update problems, PANOS 4.0.5

Hi, I need some help about a PAN update trouble, since december of last year can't update all the signatures of threats, APP's, url filtering and antivirus.

On the dynamic update section, when checking for new version, shows an error:

Failed to check c

How to identify specific object usage ?

Hello,

Is there a way to easily find out where a specific object is used in the policies ?

I know that I can use the filter filed in the policy tab (by using "drag and drop" or filter drop-down menu). However, when using group objects for multiples add

Retrieve Primary group of a user

Hi,

I've just upgraded my PA-2050 to 4.1.1 and configured LDAP servers and group mapping for building some policies rules based on AD groups.

Everything works well except one thing.

The primary group of a user is not retrieved.

And this is a problem beca

PA 2050 running 4.1.1

Just curious if anyone else notice performance issues with their palo boxes after upgrading to 4.1.1? 

I’m getting a lot of commit failures, cannot connect to the device errors or the page just takes 3-5 minutes to load.  I’m also noticing that when

Globalprotect client failing authentication

We have had several instances where our end users are not able to connect with the globalprotect client since upgrading to PANOS 4.1.  When I check the system log file I see the following errors

2012/01/18 09:45:03info     globalp portal globalp 0  G