PAN Agent 4.1 Setup Guide

Does anyone have a good step by step guide on setting up the 4.1 Pan Agent? The admin guide wasn't much help. I'm getting a no certificate error in the monitor logs of the Agent. Thanks,

Producing an application usage graph?

Is there a way to produce a graph of the usage of a particular application?

Bytes or sessions would be acceptable, I just want to be able to show a rough usage trend over the course of a day/week.

Thanks.

Are access domains still relevant??

With user roles, Admin Roles, vsys access profiles, are access domains still relevant?

Where would I use them over the other methods?

Getting crazy with Ipsec-tunnel

Hello everyone,

i'm trying a couple of days to establish an IPsec-tunnel to my amazon VPC with our PA-500.

I can do what ever i want the tunnel will not get up. The log file said:

2011-10-31 14:11:06 [DEBUG]: ikev1.c:1427:isakmp_ph1resend(): resend phas

How to configure a Cisco ASA behind PA2050 with public IP

Greetings,

I'm trying to figure out how to configure our PA2050 to point one of our public IPs in a /25 block to a Cisco ASA 5510 behind it. We're using both the PA's SSL VPN and the ASA's SSL VPN so I'd like to plug the ASA into port 2 on the PA2050

App Scope Times Wrong

I upgraded our PAN-500 to 4.01 today and now all of the times in the App Scope Monitors (Network, Threat, etc) are off by 4 hours.  The Log times are all correct.

For instance, it is now 18:22 according to the Device page on the PAN (which is correct)

Per host QoS

Hi there.

I've played with different QoS setups. And currently I'm trying to set up a per host based QoS or BW shaping.

My QoS profile is as following:

Class 3, Min BW: 2Mb/s MaxBW:3Mb/s

Class 4, Min BW: 1Mb/s MaxBW:2Mb/s

QoS policy is:

#1 SrcZone: Inside,

Auto-enable youtube safety mode?

We are looking at opening up YouTube to our general user base, but do not want to push out a policy that would enable safety mode. I'd like to have a URL filtering continue and override page where the user could click on the continue button, which wo

issues accessing urls even though whitelisted

Hi,

I am having problems troubleshoot access to http://www.stockbrokers.barclays.co.uk/ when i try to login,(https://www.stockbrokers.barclays.co.uk/idv/Login1.asp?category=&usecase=login&popup=&)

I have allowed *.barclays.* on the url filtering profil

dns-proxy static entry lost

I've got a PA-5050 running version 4.0.6.

I'm using the dns-proxy to resolve a single address from my wireless guest network access.  It works fine for days, then sometimes just stops working.

Under Network >> DNS Proxy the entry is listed and enabled,

H.225 Content Inspection

I am having a problem with VOIP communications passing through my PA-4020's. The PA is recognising the H.225 application, however it would appear that the content inspection is not translating the IP addresses within the application payload,  I do h

Edinburgh - pbf + zone lookup snafus

Hi,

I'm seeing the following.

Consider:

- two existing Internet lines, put in zones "I-1" and "I-2"

- there are two L3 interfaces, one in I-1 with address PA-1, one in I-2 with address PA-2

- the default route goes to a router reachable in I-2

- there's a

Commit failed due to Application update

After an auto update of application we can't do a commit with out explanation on the commit page.

We discover that when we do a revert of application the commit is ok so we put off the auto update but we want it back.

How could we solve this problem ?