Policy Based Forwarding and global protect

Hello people,

I have a PBF problem and can not solve it without help.

My PA-500 firewall have dual ISP links. One of them is for users,

and uses normal routing. The other one is for testing purposes,

I use PBF to route few machines through other ISP link

Unknown Event in system log

Hi,

I can see some unknown ebents in system logs in PA 2050. From which ebent it come from? Please refer the attached.

Please advice

SMS Alert issue

Hi,

Even though i get the email message PA says there is an error. Please refer the attched doc.

Please advice since i do not get the email messages from PA

Thanks

Asanka

Link-Aggregation with Brocade/Foundry MLX

Hi all,

I'm trying to setup an aggregation between a PA-5050 (4.1.1) and an Brocade MLX4 (5.2.0).

On the MLX I've setup:

!
lag "PA-5050_1" static id 3
ports ethernet 2/1 to 2/2
primary-port 2/1
deploy
!

!
lag "PA-5050_2" static id 3
  ports ethernet 2/3 to

IPS/IDS Effectiveness?

I know this is subjective, but does anyone have any knowledge/experience of how effective the Palo Alto IPS/IDS is compared to a more dedicated product?

I'm looking at ways to try and detect/block suspect traffic to our web server and obviously there

tft export / scp export privilege level question

Hi,

why do tft export and scp export require write access to the device?

They are not available on readonly users.

Thanks

Karsten

Using QOS to control Internet download usage

Hello,

I've read through the documentation and forum posts, and tinkered with QOS config but still am not clear on whether what I'd like to do is possible.  Hopefully I can explain this clearly... here goes...

I've got a PA-4020 HA running 3.1.5.  Inte

Panorama Extra storage

Hello i've just setup panorama server and have followed these insructions to add a  dsik for bigger storage for logs, but in the GUI it still shows 10gb even though I have attached a 500GB virtual hardrive.

these are the instuctions I followed.

1. In V

web-browsing application basic question

Hello.

I have PANOS 4.1

Can somebody explain to me why when i permit folowing applications (clearspace, flash, ftp, google-maps, google-translate, ssl, web-browsing) on application-default serwice  in policy from zone trust to untrust in rule1 the yout

PCAP

Does anyone know of a tool/application I can use to sanitize or remove username/password in a pcap file?

How to completely deny a specific url-category?

When you setup url-filtering you can choose from one of the following actions:

Allow (permit access)

Block (block access and notify user)

Continue (block access and notify user and let user continue anyway if they want to)

Override (same as continue but

Wildfire feedback

Hello all,

As many of you guys, we have downloaded and installed the latest version of PAN OS - 4.1.0

Do you have by any chance first feedbacks about the new wildfire feature ?

Although the configuration is pretty straight & easy, we notice some strange

Global Protect and digital certificate

We would like to deploy a VPN client with both digital certificate (for group authentication) and RSA SecurID password (for strong authentication); so far we have failed in importing into GlobalProtect client digital certificates: is it supported? In

Palo Alto is not Blocking Ultrasurf ver 9.x and 10.x

Hello, everybody we have some problems with this evasive aplication, Ultrasurf. PAN can detect many  version of this software but also NOT detect it some others. The trafic generated by some versions (especially version 9.x and some 10.0x), only dete