Couple of questions about GlobalProtect client and AppStore through PA500

        Hi, I've recently upgraded our PA-500 to 4.1.3 and found that this version has significantly improved over the previous 4.0.X.

But now I have few quirks that the new version brought up or didn't solve as I expected.

     First, after upgradin

Blocking & AV

Hi - we current;y have our PA4050s in aleret mode only on every rule for AV. If we device to turn this to Block for specific rules - what does this actually do if it identifies a virus? Cheers.

Cabinet File corrupt error

Greetings,

Recently upgraded to v4.1.3 and going through the process of installing the Global Protect client on the workstation.  I've tried this on Win 7 32bit and 64 bit and keeps throwing corrupt file error.

Screen dump attached.

Cheers

Can User-ID Agent Monitor a Citrix Farm security logs same like it can Exchange (API integration or future extension to the TSAgent?)

Is it possible for the UIA to monitor a Citrix farm/ cluster security logs in order to gather the user-to-ip mappings required for the firewall. Similar to how the UIA can monitor Exchange servers security logs for the same effect.

I'm NOT refering to

PAN 4.1.3 and Application selection in policies

No longer able to view all my policies in the drop down, gets to the Gs and there is an italicized more that is un-selectable...  Tried on both MAC, Windows, E.G. Safari, Chrome, Firefox, IE, confirmed it works in 4.1.2...

Is it possible to view and configure VPNs as a vsys admin?

Is it possible to view and configure VPNs as a vsys admin?

It appears that the VPN configuration is only part of the device admin, however I choose this option I am unable to limit the access on a per vsys basis. Am I missing something something? If n

Recieve Errors on connection to Cisco Nexus 7000

Hi

I have a HA pair of PA-5020 and a single PA-2020 connected to switchports on a Cisco Nexus 7000

I'm seeing receive errors on all the physical ports on my PA boxes but nothing on the Cisco device.

Duplex is set at auto, speed set at auto for both ends

OSPF multipath L2 FIP

Hi,

   We recently purchased two PAN 5020 Firewalls. I had two easy questions.  We were wondering if they support OSPF multipath path (either equal cost or unequal cost).

I was also wondering if I can configure muliple Floating IP address in the L2 mo

proxy squid in a DMZ

hello,

I put a squid proxy in the DMZ zone with address 192.168.1.2
it is connected to the PAN - 192.168.1.1
and I trust zone to the untrust lan and another to the internet
and I can not ping the proxy from the lan

interface pan to lan 10.155.10.10

my i

Having trouble configuring IPSec tunnel (PA-500)

We have a VPS system to which we need to grant access to our private office network.  The VPS is in a cloud service so there is no networking gear that we can use for the vpn end point.  Our office network is behind a PA-500 firewall.

The VPS is a Cen

User-ID 4.1.2-2 and Exchange

I am attempting to gather user to IP mapping for exchange users with User-ID agent 4.1.2-2.  I am accessing our exchange server using the iphone mail app, but no information is for my IP address.  I know there is a known issue logging IMAP or POP3 us