General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Reason to upgrade to 4.0.2 ? ! ?

Just recently upgraded to 3.1.8Like others here, wondering the REAL advantages of upgrading to 4.0.2I don't want to run into the issues missed by QA in version 4.0.1 that I have seen heremanagement console not working via httpsQos issuesIPSEC Tunnels not workingwould like everyone's feedbackThose who have upgraded for a specific feature setThos ...

mthomasson by Not applicable
  • 11360 Views
  • 17 replies
  • 0 Likes

Error parsing pdf file

Using PAN OS 3.0.8 on PA-4060, I got the normal correct report Daily_hfw_Reports_20110511.pdfBut when upgraded to PAN OS 4.0.2, the first page incorrectly changed to Error parsing pdf file as shown in 1-20110518Daily_hfw_Reports.pdfPlease kindly give me any solution for correct report.(^_^)Songkrant

songkrant by Not applicable
  • 19742 Views
  • 5 replies
  • 0 Likes

Resolved! More info needed on a virus named JS/Trojan-Clicker.agent.cobte

We have a website which is not functioning properly because a javascript menu named quickmenu.js is being flagged as having the virus JS/Trojan-Clicker.agent.cobte. I get not search results ion the web for this, and in the threat database, all I have is a name and number. Please provide more details surrounding this virus so that we can ascerta...

edrabek by Not applicable
  • 4466 Views
  • 4 replies
  • 0 Likes

Injecting a default route into OSPF

I have an OSPF virtual router configuration with two interfaces. One interface (int1) is part of the default area (0.0.0.0) whereas the other one (int2) is not. There is a static default which points to the next hop on the non-OSPF interface network.I want to announce or generate a default route into the OSPF area and have clicked the "Allow ...

quist by Not applicable
  • 14573 Views
  • 2 replies
  • 0 Likes

IKE pre-shared key: is there any forbidden character?

Hi Everybody,when configuring an IPSec VPN between our PAN appliance and both Cisco and CheckPoint devices, we had problems with using a long pre-shared key, which included special characters too (e.g. more than 30 letters, both small and lower case, numbers, "!", "$").Is there any constraint with the key lenght, or any forbidden character?Thank...

Bucche by L2 Linker
  • 8039 Views
  • 2 replies
  • 0 Likes

Resolved! Upload page for tech support

I am really suprised that the SSL cert for the web page used to upload tech support files doesn't have a trusted cert. Is that by design, because uploading my firewall config to an untrusted SSL site makes me feel a little weird... Especially when I am sending the config to a security based company ?

PDFs and MS-updates

Hi PAN Experts,Has anybody faced problem of MS-updates and PDFs not able to go through a PAN in vwire mode ? policy is allow all in either direction. Version is 4 0 2.BR

Problem with IPSec and GRE

HelloI have a bg problemThe need is to create such a configuration: external IPSec tunnel and next GRE tunnel inside the previous one. IPSec tunnel must be created between my PA device and external gateway. GRE tunnel mus be created between my cisco router inside my network and other cisco router behind external gateway. Then there must be allow...

Revoked Certificate treating as Valid, is it a bug?

I have set up Client Certification Profile, and use in SSL VPN. I tried to revoke a cert. Firefox already able to valid that cert is invalid but PaloAlto still allow that certificate, I was able to verify from my OSCP server that PaloAlto had a successful query to my server, but I dont know what it is still allowing that revoked cert in SSL VPN.

muratahk by Not applicable
  • 5542 Views
  • 4 replies
  • 0 Likes

Resolved! Mobile Devices (Apple & Android)

Our school district has started purchasing mobile devices, the iPad2's and some Xooms.I've noticed in the Monitor logs that they don’t always fall until the default rule? So far two have been using the Admin rule which opens all but Adult content. These devices are not logging into the domain, they do not requester with DNS but they do get the...

Resolved! Application Choice in Security Policy

All,I am setting up a security policy that will allow inbound ssl traffic only to a secured web server. The NAT rule is already created but I have a question about the application choices for the security rule. If I just list ssl as the application will that work or do I also need to have web-browsing added also?Ken

tohoken by Not applicable
  • 2407 Views
  • 1 replies
  • 0 Likes

Palo Alto Site Survey

Hellofor my job, i will need to do a site for the installation of Palo Alto Firewalls (not still decided if it will be a cluster or not)Do soemone has some experience for that? What does i need to consider? Power supply, rack space, connectivity?Thanks for help

mmichel by Not applicable
  • 2101 Views
  • 1 replies
  • 0 Likes
  • 24396 Posts
  • 123 Subscriptions
Top Solution Authors
Labels