General Topics

Data filter - Blocking suspicious downloads

For data filtering we set a rule to alert for certain downloads (such as .bat, .exe, etc).  In the monitor log, all alerts are listed as LOW severity.  I have noticed a pattern where a workstation shows a suspicious download such as game.exe or abyz

GRE and IPSec traffic

Hello,

Does PanOS 3.1.4 in L3 mode supports GRE and IPSec protocols? We need to NAT this traffic.

Br!

Ahti Akel

Coverage for New IPS Evasion Techniques

Stonesoft recently reported multiple IPS evasion techniques that can be used to evade detection by IPS/IDS devices. We will be releasing signatures to detect most of the evasions in our content release tomorrow. More details will be posted on this th

Adobe zero-day vulnerability security advisory

PA-500 - Auto reboot byitself

Hi Again,

The appliance is auto reboot after running for some time without any rebooting or shutdown. After performing some checking, the system log file shows that "captive_portal: restarts exhausted, rebooting system".

Yes, i did some minor changes o

After SSL VPN connected, there are no routes to private LAN

My PAN SE just helped setup our SSL-VPN.  The first two users had no problems, but the next two did.  I observered both first hand.  Once the SSL VPN client is connected, I was not able to ping internal IP addresses.  I checked the routes on the PC (

Zone Protection Setting

Do you have the recommended setting for each zone protection?

We know this issue is depending on the situation and we have to tune up after installation.

However, what's the value of setting that we should configure?

We're providing the management servi

tcp-syn enabled may affect the transfer (downloading) files.?

if I have enabled tcp-syn in the trust zone unusually high number of these 'tcp non-syn packets' being generated, overall-throughput through the firewall can be affected?.

in case if affects, as I can disable this option?

What is a command to exit from VSYS?

Hi,

I can not exit from VSYS.
I tried "quit" ,"exit" and others command,but was not able to exit.

Could you tell me it?

Device:PA-2050(3.1.3)
---------
admin@PA-2050 vsys2> set system setting target-vsys vsys2
Session target vsys changed to vsys2
admin@PA-20

Panorama Console Error - Ext3-fs warning

Hello,

We found the below error message on the Pano console:

pano login: EXT3-fs warning: maximal mount count reached, running e2fs recommended

Have not had any issues running Panorama.  Is there something I need to do to correct this? Thanks!

Mike

Vulnerability Protection - inbound traffic to DMZ Servers

Hello,

Does the Vulnerability Protection Profile provide any benefit to inbound traffic from the Internet to servers on the DMZ? Is it more for web protection from users going outbound to browse the web and not so much from outside sources accessing s