How to match custom SSL based applications

I'm trying to tag a particular application protocol that used TLS/SSL as a security wrapper.

The most accurate way I can ID this application protocol is to match against the FQDN subjectName returned by the server during the certificate handshake.

I've

Make a feature request

Hey All;  We usually get through our SE to make feature requests.  Is there a way to submit these online ?

If so mine are :

1) Websense Style Report URL filter: Access time by category of user traffic

2) Daily usage report categorized by categories with

SSL 1.3.1 changes

I'd like to upgrade to the 1.3.x SSL client to support OSX Lion. I'm concerned about the comments that I've seen about the upgrade not working for PC users that are not administrators on their machines. Does anybody know if the 1.3.1 SSL client addre

changing computers on network from static to dhcp

we are now changing over to dhcp on our network for our computers and they are currently setup

with static ip.   Any computer in palo that is blocked from the internet or going outside is setup

with the name of workstation and the ip address.  Since

Captive Portal auto popup

I was wondering if there was any way to have the browser popup with the CP login page whenever a user tries to use anything (email, chat, etc) that requires internet connectivity.  I've seen this in some hotels before and think it would be useful her

OSPF Resets

While doing some testing on a PA pair at a new site, I noticed that at least one type of configuration change would apparently cause OSPF to reset and lose all of the routes out of the site. Specifically, I was enabling and disabling IPv6 on interfac

Poor Man's HA

Greetings,

We have a single PA-500 which we will be putting guest (non-critical) internet traffic behind.  Currntly it is patched in as such:

eth1/1: L3 - Trusted

eth1/2: L3 - Untrusted

Is there anyway to leverage HA between interfaces on the same device

NetConnect OS support

When will NetConnect support Linux/Unix and Ipad?  Am I correct that currently Netconnect only supports:

Windows 7 32-bit

Windows 7 64Bit

MacOS 10.5 32-bit

MacOS 10.6 32-bit??

general problems

hi,

we cant use automated updates since Nov 24th .when i try to update from dynamic updates it gives this error. ”Failed to check content upgrade info due to generic communication error. Please try again later”.

when i try to update from file it lo

HTTPS apps identified without decryption

Hi all,

in my configuration I have neither SSL Decryption implemented nor URL Filtering. I only have 1 policy: "trust to untrst accept all" in Vwire. PANOS 4.0.2

If, from my PC behind PAN device, I try to go to: _https://www.facebook.com_

PAN device sho

Config file

hello everyone,

good day to you.

have a little question... its it possible to upload a config file generated from a pa-2020 then upload it on a pa-2050 ?

regards,

bp

Packet Drops under 3.1.8 / 3.1.9?

This is more of an FYI than a question. I want to share what my company is going through so we can all learn from each other.

We monitor our network by sending out pings every 500ms. We have multiple ping sources going to scores of endpoints. Then, we

Problem with ipsec vpn session

Hi

I hope that someone can bring some insight in to this problem.

The situation is this:

Two out of seven configured ipsec tunnels are having some kind of connection issue. Our monitoring system will notify me that the VPN connection is down. I have the