General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

RDP incomplete session

RDP worked before the installation of PAN 500. Now I'm having an incomplete session on RDP (TCP handshake is dropping). How do I fix this:760 t.120 DISCARD FLOW NS 172.21.196.181[4483]/l3-trust/6 (70.159.69.130[2588])vsys1 98.142.94.202[3389]/l3-untrust (98.142.94.202[3389])

Resolved! Apps vs URL Profile - block application

Hi all,I tested this strange (imho) behaviour with PAN 2020 4.0.3:1. create a first security policy with ssl, http-proxy, dns but without web-browsing application (as you can see in 1.jpg) with action ALLOW2. create a following security policy with facebook application and action DENY3. create a final security policy for all other outbound traff...

panagent user identification problem with working groups on the active directory

Hi,i tried ad user identification with pan agent on the pa2050 box and windows2008R2.But i have some problemsfor example;i created one group which called MSN_DENY and added it 5 users like test 1,test 2,test3,test4,test5(whatever) .later i was write two security rule.firstly deny msn traffic for MSN_DENY group(rule1),secondly permit msn traffic ...

HA Sync issues with content updates

I am running a pair of PA-4020s in HA mode on PAN OS 3.1.8. For about the last three or four Threat and App Content updates I have had sync issues. I have the active PA downloading and then syncing the content to the passive PA. This worked fine until now and we have had the 4020s in place since April. Anyone else having this issue or have any s...

Base64 encoded HTTP traffic.

Hi,I was reading the 2011-2012 buyers giude. There is a statement that describes Base64 encoded HTTP messages , used in command and control traffic for malware.The bot sets the User-Agent header value to “inter easy” and also receives a scrambledBase64 encoded command which means “sleep”: <!-- 2upczxAX.3Most network security controls would pa...

AD/LDAP Server authentication

Does anyone have any tips for getting AD/LDAP bind request working at the server. I have the PaloAlto sending and receiving the bind request to authenticate, but the server reply packet says the credentials are invalid (error code 52e - invalid credential). My AD server administrator says the requests aren't making it to the server, but I have...

Simple Policy Question

This is a simple one, but I couldn't find it specifically stated in the manual.When I define a security policy, are the Zone and Address exclusive of each other? In other words, if I select a zone,it requires I put in specific IP's or select Any. If I leave the IP's as any, but select a specific zone, will it only allow IP's from within that z...

Resolved! URL Category priority

HiI am wondering what will happen if one URL is in two different categories. Especially if one is configured to block, the other to pass the request.I don't know if this can happen within predefined categories (from BrightCloud), but as i am able to define new ones, its possible to add a already categorized URL in my own category.Our goal is, to...

Resolved! Trusted Certificate with HA

Hi All,Hi have a PA-2050 with a HA, we need the SSL VPN with trusted certificate. How can I generate the CSR key in the PA?Thanks.

Resolved! Range header DoS vulnerability Apache HTTPD 1.3/2.x \(CVE-2011-3192\

CVE-2011-3192 Was published yesterday. Are there any mitigation steps I can make in the PaloAlto until they release a vulnerability update?http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/browser

Resolved! how can we delete reports on the panos4

Hihow can we delete/remove old custom reports or pdf summary reports on the panos 4 with cli?regards

Resolved! Trunk / Link Agg Recommendation

I have a 5060 I'd like to carve up and use one of the vsys's on it for a back-end firewall. My plan was to take two of the 10Gb ports and LAG them together, sending all 4 of my vlans in and out on that one trunk. Will that work, or is there a better way to architect this setup?I'm a little lost in setting this up and creating the vlans to resi...

Problems with PAN

We are a PAN partner and have some issues with the boxes . We have a PA 500 installed for testing as we are looking to do some live demo for clients . I have a laptop connected to the lab running logme in, skype . The unit has been on live traffic for about 4 hrs and it can't detect neither the Skype nor the logme in . incomplete or insufficient...

Resolved! Session Browser?

Just looked at Monitor->Session Browser. This is cool! Why is it not documented anywhere? Is it new and I just missed something?

Panorama SSL Decryption Rules

Hi all,I have some problem during commiting decryption policy (Forward Proxy) to devices from Panorama. Panorama tells me only one things: "commit all failed" :smileymischief:I suppose something related to decryption certificates that are device dependent. For this reason I tried to import the certificate generated from the PAN device inside the...