terminal server agent and security policies

hi , i installed the terminal server agent on the ts machine and i also configured ldap on palo alto,and create a no-restriciton rule on top of the list.when i try to access to internet technically i must not be blocked,but when i blocked i also dn't

Application-default for dynamic protocol

Hello,

How does the PA device work when we define a rule that allow an application that use dynamic ports and we specifiy the application-default service ?

As an example, I have a rule that allow application "rmi-iiop" (Java remote method invocation (R

Upgraded to 4.1 Global Protect SSL VPN

Recently upgraded to 4.1 where SSL VPN is now incorporated with the Global Protect client.  Is it possible to not use the Global Protect client and connect via SSL using the Java NetConnect client?

PBF - Best practices for Target IP Address

Hello all,

When you want to failover between 2 ISP with PBF features, what are the best practices for the choice of the target IP addresses?

If we use the default gw of ISP 1 (for ISP 1 tracking) and ISP2 (for ISP2 tracking), it's sometimes possible th

Importing old logs to Panorama

Greetings!

When I upgraded to 4.1, I choose to rebuild my Panorama server from scratch. After I was finished, I decided to try exporting the logs from the old server and import them to the new. Is that possible? Will it leave the new log entries intac

PaloAlto Supported OS and Browsers

Hi,

I am new and learning PaloAlto currently, but I was just thinking were to find documents that would show or list some compatibility or supported browsers on different platforms for Management and also for SSL VPN (netconnect) or maybe someone can

how to show the status about http-proxy-use-transaction

Hi

No I check some  feature related web-proxy

I know one CLI cmd :

set deviceconfig setting ctd http-proxy-use-transaction yes/No

I am not sure the CLI cmd  to show it's current value (yes or no)

thanks

Zhiyong

Why permitiing web-brosing is required while permitting custom http-based apps?

Hello,

I was testing custom http based apps, and in this context i created a custom app based on a signature in the host field of the http header. The problem is that it function properly only if i permit the app web-brosing in the same rule. By loggi

Vasco Token authentication

How can I integrade Vasco (Radius) Authentication into the Firewall?

On my old Firewall i use telnet to identify my users with Radius so I can define special Firewall Rules.

With UserID there no Option to use Radius right?

i see a user name on the blocked pages which is different from the user i loged in AciveDirectory.

Hi i have a problem,i logged in with mydomain\jame to my computer,and i tried to access filtered url and see different user name on the warning page to that category.why is this happening,is there any idea?

if panorama occurred network loss of network connection?

hello there.

I'd like to know what happen, if network disconnected between panorama and PAN mgmt network.

if panorama network has a disconnect with problem of NIC, PAN device won't send logs to panorama.

but i'd like to send logs without loss of logs

200 Box

Does the 200 box have 2 different processors like the 500 (one for the control plane, one for the data plane)?

4.1 - How big of a jump from 4.0?

We're currently running 3.1.10.  There is an issue we're encountering related to SSL decryption and URL filtering which we're waiting for 4.0.8 to come out and fix.

I see 4.1 is now out so just when I thought we'd be running the latest PanOS, all of a