Overlapping networks - NAT

Hi!

I have another problem - this time with overlapping networks. Here is a picture:

I'm the administrator of PA1. How can user from PC1 connect with PC2 ? I tried with destination and source nat on PA1 but i had to add routing to the destination trans

How to report traffic logs for a specific rule ?

Hello,

I have defined several specific policies to allow traffic through my PA device.

I have also created a rule that allow any traffic (at the end) to not impact current traffic.

My idea is to be able to identify all traffic that flows through my devi

Will SSL VPN work for Apple IPAD (or ios 5 devices)

Hello,

I was told today by PANTAC that  SSL VPN work for IPAD (or ios 5 devices) for PANOS 4.1 but I have not been able to find any documentation supporting this to present interanlly.  Can someone confirm this and also provide any supporting document

NetConnect to Global Protect migration issue

Hello to everyone,

I migrate my PAN 500 from 4.0.7 to 4.1.0, with previously configured SSL-VPN which was operational. After migrating to new FW, SSL-VPN migrated to Global Protect portal with all configured settings and with new GP client to end node

terminal server agent and security policies

hi , i installed the terminal server agent on the ts machine and i also configured ldap on palo alto,and create a no-restriciton rule on top of the list.when i try to access to internet technically i must not be blocked,but when i blocked i also dn't

Application-default for dynamic protocol

Hello,

How does the PA device work when we define a rule that allow an application that use dynamic ports and we specifiy the application-default service ?

As an example, I have a rule that allow application "rmi-iiop" (Java remote method invocation (R

Upgraded to 4.1 Global Protect SSL VPN

Recently upgraded to 4.1 where SSL VPN is now incorporated with the Global Protect client.  Is it possible to not use the Global Protect client and connect via SSL using the Java NetConnect client?

PBF - Best practices for Target IP Address

Hello all,

When you want to failover between 2 ISP with PBF features, what are the best practices for the choice of the target IP addresses?

If we use the default gw of ISP 1 (for ISP 1 tracking) and ISP2 (for ISP2 tracking), it's sometimes possible th

Importing old logs to Panorama

Greetings!

When I upgraded to 4.1, I choose to rebuild my Panorama server from scratch. After I was finished, I decided to try exporting the logs from the old server and import them to the new. Is that possible? Will it leave the new log entries intac

PaloAlto Supported OS and Browsers

Hi,

I am new and learning PaloAlto currently, but I was just thinking were to find documents that would show or list some compatibility or supported browsers on different platforms for Management and also for SSL VPN (netconnect) or maybe someone can

how to show the status about http-proxy-use-transaction

Hi

No I check some  feature related web-proxy

I know one CLI cmd :

set deviceconfig setting ctd http-proxy-use-transaction yes/No

I am not sure the CLI cmd  to show it's current value (yes or no)

thanks

Zhiyong

Why permitiing web-brosing is required while permitting custom http-based apps?

Hello,

I was testing custom http based apps, and in this context i created a custom app based on a signature in the host field of the http header. The problem is that it function properly only if i permit the app web-brosing in the same rule. By loggi