Errors with Cosutm Reports

Hi Guys,

Since I have upgrade to 3.1.6 (December 2010), the PA-500 is unable to run Costum Reports longer than 1 week or last 7 days, I downgraded to 3.1.5 but this does not work.

Right now I have version 3.1.6, an every time I try to run a Custom Rep

Blocking MP3's with file blocking/data filtering - how?

We tried using the 'MPEG' file type and file blocking, but this doesn't do the job (in fact it only seems to block MPEG video's, not MPEG-3 audio). We also tried creating a data filter with "MP3HASH" as a regular expression, but this didn't appear to

IPS Default Protections?

I need a techincal answer for default protections with PAN IPS enabled.  If possible, think in a CP-to-PAN conversion.  I know...apples to oranges.

TIA - Jeff

Control android and other smartphones

I managed to use the setup for blockin iphone/ipad trafic.

https://live.paloaltonetworks.com/docs/DOC-1503

Some questions...

How do we do this for other smartphones?

And is it possible to control this with IP range for instance? Or other methods?

Thinki

URL Block Question

So I have a need to block almost all internet access for a certain group of folks.  They are in a warehouse and only need access to a few websites (time clock, shipping sites, etc) related to their jobs.

How I'm doing this currently is to use a Activ

What is Trusted CA Certificate used for?

According to the PA-3.0_Administrators_Guide.pdf:

"
Trusted CA certificate—Import an additional intermediate certificate authority (CA) certificate to trust when doing SSL decryption. If the firewall encounters a certificate that is not signed by a tru

Custom URL not working

Hi,

I have a PA2020 system with Custom URL category defined and it was working fine on 3.1.4.

When we upgraded to 3.1.6, the Custom URL category was not working and URL present in the custom category were being blocked, even if they were in the allow l

manage PAN device over a WAN, you might experience problems

Problem:
If you try to manage PAN device over a WAN, you might experience problems.
By manage, I mean via the Web interface, via CLI or via Panorama.
The Web interface may not load
Or
login via CLI works fine.
However a command that returns a lot of dat

SMB URI Filtering (Custom Applications)

I'm wondering if it is possible to define an 'application' based on an SMB URI path?

Example - I have two shares on a SMB SAN server \\san\public and \\san\secret; is it possible to apply a firewall rule to a Palo device that sits between this server

SYN Flood

hi : I have a question in regard to Flood Protection Thresholds under Zone Protection. Do the thresholds for Alert/Activate/Maximum apply to counting SYN packets directed at a partuicular host or to counting SYN packets directed at all the hosts in t

Checkpoint FW-1 Telnet Authentication - PA Alternative?

Hi

We will be installing 2x PA4050s into our datacentres to replace our current Checkpoint Alteon Switched Firewalls. We use Checkpoints "telnet authentication" on TCP port 259 to allow super users access through the firewalls based on their IP addres

Address Group Membership?

Is there a way to test if an object or IP address is a member of an Address Group?