General Topics

Multiple policies that use URL allow lists?

I have a query regarding multiple rules to allow access to URL whitelists.

Let’s say I have rule1 that allows “any” on my LAN to a URL profile that blocks everything but only allows access to url1.com.

I then want to have rule2 that only allows “some

How to log all url ?

Hello,

In the monitor tab, the traffic log doesn't allow to see url destination. As far as I know, the only place where to see url destination is URL Filtering logs.

However, only the url that are part of the URL Filtering objects are logged.

My questio

Authentication for generic user account

Hi,

A client have a several computers with a generic user that logon automaticaly. Actually, with a ISA Server configured as explicit user, the browser prompts user/pass data to access to Internet. What can I do with PaloAlto to make the same? Captive

Global Protect Client with OTP

Can the GPC be configured to prompt me for the password when attempting to connect?

I'm using RSA tokens but I having real trouble trying to get GPC to work properly with out a fixed password.

I'm not sure how I managed it but at one point I did get a

4.1.0 release - should I wait?

How stable?  How tested?  Is this mostly incremental changes on the inside?  The mentioned improvements to the management performance have me very interested, but when I went from 3.x -> 4.0 we had nothing but problems due to a few bugs.

I'm now upgra

download pending when need download 'the Generate stats dump'

I want to download the Report stat Dump in GUI . But seems always waitting long....... time - ( pending the download UI , no successfull ) . I guess maybe log file is full need more time to Generate ..( I am using V4.0.5 ) . Is it normal behavior.?.

PAN Agent 4.1 Setup Guide

Does anyone have a good step by step guide on setting up the 4.1 Pan Agent? The admin guide wasn't much help. I'm getting a no certificate error in the monitor logs of the Agent. Thanks,

Producing an application usage graph?

Is there a way to produce a graph of the usage of a particular application?

Bytes or sessions would be acceptable, I just want to be able to show a rough usage trend over the course of a day/week.

Thanks.

Are access domains still relevant??

With user roles, Admin Roles, vsys access profiles, are access domains still relevant?

Where would I use them over the other methods?

Getting crazy with Ipsec-tunnel

Hello everyone,

i'm trying a couple of days to establish an IPsec-tunnel to my amazon VPC with our PA-500.

I can do what ever i want the tunnel will not get up. The log file said:

2011-10-31 14:11:06 [DEBUG]: ikev1.c:1427:isakmp_ph1resend(): resend phas

How to configure a Cisco ASA behind PA2050 with public IP

Greetings,

I'm trying to figure out how to configure our PA2050 to point one of our public IPs in a /25 block to a Cisco ASA 5510 behind it. We're using both the PA's SSL VPN and the ASA's SSL VPN so I'd like to plug the ASA into port 2 on the PA2050

App Scope Times Wrong

I upgraded our PAN-500 to 4.01 today and now all of the times in the App Scope Monitors (Network, Threat, etc) are off by 4 hours.  The Log times are all correct.

For instance, it is now 18:22 according to the Device page on the PAN (which is correct)