Edinburgh - pbf + zone lookup snafus

Hi,

I'm seeing the following.

Consider:

- two existing Internet lines, put in zones "I-1" and "I-2"

- there are two L3 interfaces, one in I-1 with address PA-1, one in I-2 with address PA-2

- the default route goes to a router reachable in I-2

- there's a

Commit failed due to Application update

After an auto update of application we can't do a commit with out explanation on the commit page.

We discover that when we do a revert of application the commit is ok so we put off the auto update but we want it back.

How could we solve this problem ?

SNMP V3 Configuration

I notice that there is no example or detail descriptions for configuration of SNMPv3.  Here is my configuration which works but I never got the include/exclude mask to work.  If someone else have an example or recommendations please upload.

set device

CPU

I would like to know that If I observe from Throughput and Session is not exceed the maximum number that box can support. What cause that may make CPU performance overload? Please kindly share idea.

Note. My box is PA2050. Thoughput is around 400Mbps

New PA Purchase - Rules question and any tips?

Recently purchased a PA2020 to replace our Cisco PIX 525.  I'm in the process of auditing our cisco config and recreating it in the PA.

I'm looking for suggestions on how to allow applications inside to outside and outside to inside.

I only have two zo

How do I use the query feature of the CLI show log traffic command?

I'm trying to perform a complex log export operation from the command line, as the web GUI seems to be drastically underpowered and slow to respond (hours to see, longer to export in CSV), and from the command line I can't perform queries using terms

SSL VPN users unable to access the internet though Palo

Hi

     I have setup SSL VPN and its been in use for a few weeks without any issue with the exception of one minor annoyance.

I have been unable to get the SSL VPN users to be able to see the internet when connected.

1) The access route is set to 0.0.0

IPS functionality testing

We are looking to do a live demo of PAN devices to some leads . Does anybody have tool we can use to demonstrate the IPS functionality in real time .Putting the box through a wide range of attacks .  App ID is pretty easy but Checkpoint now does appl

cant block chikka messenger

how to block chikka messenger , the application is also not defined in the app-id

SSLVPN/Netconnect Command Line

Hello,

Is there a way to interact with the SSLVPN/Netconnect application via command line arguments? Can you script any portion of the launch of Netconnect?

Thanks,

-Paul

PANOS 4.0.6

Hi - I can see PANOS 4.0.6 in the software section on my Panorama. I can't see it as available when I go onto my PA 4050s though - it's still showing 4.0.5 as the latest available code to download. On the support website - it's mirrored again in the