Vsys resource management

Hi Folks,

We are in the process of evaluating Palo Alto.  Can folks share some of their experiences on how to manage resources between Vsys?  How do you manage Vsys 6 only gets x% of CPU etc...vs what other Vsys's are allowed.  What is the max number

How do you determine why a scheduled custom report did not run when scheduled?

How do you determine why a scheduled custom report did not run when scheduled?

Export "SSL VPN/SSL INBOUND Inspection Certificate" in PAN-OS 3.0.6

hi,

I can't find in PAN-OS 3.0.6 solution to export CERTIFICATE.

I tried WEB-admin and CLI but without solution :

scp export
> application                  Use scp to export application packet capture
> application-block-page       Use scp to export appl

IPSEC VPN Help?

I have a PA-500 at our main office.

We have a smaller site that currently we have a point to point circuit to, however we may not renew the contract on this, and instead put in a cheaper but faster internet leased line, the idea being to link the two

Blocking browsers ?

hi,

i just need to know is it possible to block a browser e,g Firefox or Opera with application filter ? i need to implement a restricted policy to allow only IE for browsing ...

appreciat any help..

PA-500 Management NIC Dead?

Always seems to happen out of hours but...  the management NIC on our PA-500 seems to have dropped off the face of the earth.

I can't ping it, I can't SSH/Telnet to it, nor can I get to the web GUI.

Fortunately the PAN does still appear to be passing t

Management of multiple devices in Panorama, what is shared ?

Hi,

When managing multiple PA devices in Panorama, what information is shared ? I know it is possible to create device-groups, but this is only used for security policies.

What about NAT, QoS, SSL decryption, Captive Portal, Policy based Forwarding ?

An

Basic multiple-WAN-IP networking question

Some background, I am coming from a Sonicwall (which I'm not a big fan of, but I'm familiar with it) and I also have experience with the open-source pfSense system.  I'm not super-knowledgeable regarding subnetting, but I have a basic understanding a

Blocking bittorrent traffic

Hi,

I have just found the time to start learning about our new firewall. As a test I have tried creating a policy for blocking bittorrent traffic, but it seems to have only limited effect. Transmission still happily downloads the torrent although I ca

Uknown-tcp in application based policy logs !!

Hi,

I'am using PAN-OS 3.0.9, and i have configured some policies in witch i allow some applications defined by application override. I noticed that in the logs associated to this policies, there are lines that are identified as "unknown-tcp" with acti

No version info in Virus install from panorama

Hello,

When doing app/content installs it shows what version is installed on the end device, but when doing an anti-virus update it does not so you have to keep track of which ones were done.  Is this a bug in the software or what do we need to do in

Using an explicit L3 interface for captive portal web form in PAN-OS 3.1.2

Hello,

I noticed this in the PAN-OS 3.1.2 release notes :

Captive Portal Session Enhancements – The captive portal web forms method of authenticating
and identifying a user’s IP address has been modified to include a session cookie. This session
cookie i

No logging from firewall to Panorama

We have panorama installed and 10 firewall devices, reviewing the logs today noticed that only getting logs from two of the devices even though I can install app/content and virus definitions to all of them so communication is working fine.  Anybody

Monthly PDF Summary Reports

Is there a way to take the daily PDF Summary reports and "roll them up for a monthly" report and send this to email?