Panorama Management of CLI/SSH Admins

Panorama allows central management of Web UI users, but what about SSH/CLI users?  Is there any way use Panorama as a CLI proxy to access managed devices in a similar manner?  It seems to me that the only way to manage CLI users is via a local accoun

PAN agent over WAN issue

Hi,

Just had another issue to discuss about WAN Pan Agent, if you do have time, please go through.

Local LAN PAN agent is configured for 10.0.0.0/8 network

WAN PAN agent is configured for site 1 network 10.12.111.x/24

But I have users from Site to with n

i'd like to know an average disk usage for PA appliance.

Hi all.

somebody who has a datasheet of disk usage for every single appliance including PA 5000 series??

Of course I know it is impossible to calculate correctly because it is depend on customer’s networks environment.

What I want to know is that just

ACC Tab does not display information acc tab does not display information and displays the message No Matching Records

Hi I have a Pan 500 with the software version 3.1.4 and whe

when joining the acc tab and apply a filter application for example above shows me no information and only sent me The message of No Matching Records.

I suggest something?

thanks for your att

Java 5 environment can use SSLVPN?

My company EIP system just support Java 5 environment.when i use the SSLVPN connection that will display "need check java version" information.

Active Active HA on PAN 4.x

PAN 4.x is supporting Active-Active High availability.

Clearly, most firewalls also support Active-Active HA but, they need Layer-4 switch to get full performance.

In other words, most of firewalls also support Active-Active, but it is in name only in

L3 install issue - two internet lines of L3 mode installation on same networks

Hi all.

One of demo customer has two internet lines from same ISP and same network.

PA appliance runs on V-wire mode behind L3 office router at now.

But, customer wants to change network like attached file therefore, PA should be changed from Vwire to

SSL VPN client ports

We have a few officers that connect from a remote location with a firewall of its own.  They are all using the SSL VPN client to connect back to home.  I can pull up the https://external-ip and login, but when the connection starts up i get a Disconn

Does Netconnect work with Windows 7 Service Pack 1?

Netconnect version 1.2.0-402 connecting to PANOS 4.0.1 running on Windows 7 SP1 (32bit) have been successfully tested using both IPSec and SSL protocols. We received some reports from clients using other VPN technologies that SP1 broke their client V

URL Filtering Bug filter bypassed

HI,

I am having issues with the URL filters for example if i have a blocked porn site www.xxx.com and i enter www.xxx.com.(dot) it bypasses the filter and is allowed through.  I am running version 3.1.6

Setting up Orion NPM to monitor PA-2050 via SNMP

Hi,

I'm new to setting up SNMP and need help.

Our Network Engineers need to setup their Orion NPM to monitor our 3 Palo Alto 2050's via SNMP.

They basically only need to monitor CPU, Memory, and Link States of the 3 interfaces hooked up for each of the

No IPSec-Tunnels after Upgrade from 3.1.7 to 4.01

Hello,

we run 8 PA-500s in 8 Branches. After upgrading them from 3.1.7 to 4.0.1 not all IPSec-Tunnels become active.

The Tunnels to the branches with the WAN-Interface connected to SDSL with PPPoE (automatic IP/Netmask/Gateway) stayed inactive, even af

Multiple NAT or UTurn NAT rules

We are hoping that someone can suggest a simpler way to resolve the issue of allowing internal hosts (in the Trust zone) to access servers sitting on the Trust zone via their external IP address (what PAN calls a UTurn or Hairpin rule).  We have near