Reporting for management..

I'm having some troubles coming up with a clean report that will tell my employer the highest number of concurrent users on the PAN each day...  Anybody write one?  Trying to filter out the nonsense seems to be the problem.  I just need to see "at X

Captive Portal as a AUP accept page for internet access?

Hi All,

Could I use the Captive Portal, as a way of displaying an Acceptable Use Policy ( AUP ) that users must accept, before gaining

internet access?

To make this as seemless as possible, is it also possible to not have to require the entering of user

No user names in the PA appliance

Still no user names in the PA appliance.

from PAN-Agent debug:

[skipped]

2011 09 21 16:55:16, AddEntryUnknownTableSafe 192.168.207.100

2011 09 21 16:55:16, User Enumeration, IP: 192.168.207.100, Username: MERVIN$, Domain: companyname

2011 09 21 16:55:16,

Multiple External Interfaces

Hello,

I have a pan 4020 that will be replacing multiple firewalls.  The internet side of the firewall has a /25 network.  I have a corporate network that has an external interface of x.x.x.2/25 in the Internet zone and a guest wireless network that h

how to access bash shell?

hello,

is there a way to get access to a more advanced shell, like bash, on the device?

No result from "show user pan-agent user-IDs" command

Dear All,

   I just install pan-agent on my AD, windwos 2003 server, and configure PAN box to connect to this pan-agent. I can see traffic with user from AD server. I found result from command " show user ip-user-mapping all".  I can list group of AD

Logging to Panorama over a WAN Link

We have a remote location that connects back to our corporate office via a WAN Link.  At this remote site, we have two clusters of Palo Alto Firewalls that are pretty heavily utilized and produce around 1+ GB of log per day.  We are preparing to depl

Is PAN-agent supported for win7?

Tried to install pan-agent 3.1.2 in Win7 32bit workstation. Installation is ok, but after that I see "Please start PanAgent Service first" in the Agent Status (but the same time PanAgentService is running. I tried stop\start service, restart PC - did

Application "Mode Shift" Behavior

From what I understand, "mode shift" is the term for when an application's identification changes during inspection.  For example, a flow may be initially identified as "web-browsing", and then further identified as "facebook".  I can't find any docu

URL Filtering Exception...

Hi all,

Here's what I need help with. .

I have a general URL Filter setup on my outbound internet rule.

I am filtering Job Seeker sites (Monster, etc.) per management requests.

My question is, how do I setup a rule that will allow my HR dept to be able

SSL-VPN and HA Cluster A/P

Hi,

I have two 5050 in A/P mode running version 4.0.5. My question is if I connected via ssl-vpn to my environment and the primary PA is going down, do I need automatically flip over to the stand by firewall or I need to reconnect manually? BTW I’m