Combination Signatiure in Custome Vulnerablity Signature

Hi

when I create new combination Vulnerablity Signatures ( for examples create new threat ID 48888 inlcude threat ID 40000 or 40001 )

1) I am not sure if ID=40000 attack happend , if threat log both have two log are ID=48888 & ID=40000 log , or whic

Can Panorama manage Firewalls with Overlapping IP

HI.

We have a requirement to manage a number of Palo Alto Firewalls. Some which have overlapping IP Addresses.

Is it possible for Panorama to manage an estate with this configuration almost like an MSSP

Many thanks

Richard

Cannot Ping

Hi,

I have a small problem. I cannot ping and access the ip address of my external interfaces although I can ping their default gateway. I already assigned interface mgmt for each interface and allowed ping, https, ssh and response pages but no luck.

DHCP Not releasing IP addresses

Called support they said 'known bug' upgrade to 3.10 .  Did the upgrade and IP addresses are still committed (lease expired for months in some cases) and not being released and added back into the pool.  Any ideas on how to solve this?

Intermittent User-ID with eDirectory

We're on a PA2050, v4.0.5 using eDirectory Agent 3.1.2 (Windows 2008 srvr) connected to two eDirectory servers v.8.8.5.

Users are being identified on the PA, but not all packets or sessions are showing a userid.

If I filter a single busy source IP in t

Restricting data accessible by admin user/group for ACC/Monitor etc

Hi All,

Can I, in a system that is NOT running multiple vsys, restrict the information that can be accessed, seen etc within the ACC, monitor tab etc. Like a pre-applied data filter is overlaying the entire use?

For example, having a login that is for

Qos - Rewrite DSCP field

Hi all,

Can PAN (i've got a pan 500)rewrite the DSCP field for some type of traffic(by Policy-Based routing or any way of doing this)?

Indeed i need to rewrite the dscp field of any RADIUS traffic on ef to make it appears on the WAN as a high priority

Block Botnet Traffic

Hi All;  Is there now or will there be a way to block botnet traffic based on thresholds.  A few customers have fireeye and are looking for the same type of heuristic detection and blocking.

Is there a way we can block unknown (Zero Day) botnets using

increase of max report size beyond 500?

Hello, I wanted to check the status of my status request to have the max report size increased beyond 500 entires. Is there any update as to when this might be available?

Panorama Connectivity issues

We are having issues getting the devices to connect to the Panorama

The devices (PA4020-3.1.8) connected successfully to the Panorama and then disconnected. The logs on the device do not show any new attempt to connect. I am able to telnet port 3978 o