users identified by NTLM are not automatically overwritten

Hello,

please check the attached document.

It seems like users identified by NTLM are not automatically overwritten as soon as another domain users logs into the system ??

Is this a bug ? It's working fine for multiple AD users who are working on the sa

Gratuitous / Proxy ARP in Failover

Hi,

I know that PA sends out an Gratuitous ARP in Failobver to inform the network partners that the active IF-IP has changed. But waht about the configured static NATs on the Public Network which redirects traffic to internal Servers (e.g. DMZ) ?

Are t

URL filtering

hi all,

I am trying to configure Palo alto's URL filtering for allowing user to access web site like mappy. Problem is mappy make request to other web site for displaying photos and others ....

Do you know if it's possible to create a rule using a crit

SSL-VPN: Unable to receive vpn status from service

We have a problem to connect a client with Mac OSX v.10.6.6 with netconnect: Error message: Unable to receive vpn status from service.

In the FW we can see that vpn client configuration is generated successfully: slvpn-config-succ  SSL VPN client conf

trying to export CSV getting 'Error in data download: Error in parsing xml response.'

Hi,

I hope this is the right place to ask this.

I've been exporting some filetered logs to look at in Excel. This was working fine for a while, but now whatever I export, the file I'm saving (e.g. exportLog.csv) just contains "Error in data download: E

strip off the domain for authentication with a captive portal?

Hello,

I want know if it's possible to  strip off  the domain for authentication with a captive portal?

I use PAn-AGENT  With My captive portal and I want not enter my login with domain\user but just user.

thanks for your help,

Alexandre

What causes an HA Primary to go into Suspended State?

I've setup an HA Pair with Primary Priority of 10 and a secondary of 20 (both with Pre-empt enabled).

The Primary keeps going into Suspended state.. what would cause this?

question about Thermal Chamber test result and VPNC

Hello all.

would somebody tell me where I can find out Thermal Chamber test result for the PA product?

plus. we're not enlisted on the VPNC testing product list.

do we have plan to get certify on this?

http://www.vpnc.org/testing.html

thank you very much.

About server virtualization (vmware esx) question.

Hello.

When using server vitualization environment (vmware esx) can PA inspection traffic as a vm instance from internal vm servers?

I checked application named vmware at PA device but guess it is only related vmware traffic for management. right?

Pleas

SSL VPN Client Compatibility

We have a customer using SSLVPN for users and 3rd-party peers.

A 3rd party of theirs is using the SSL VPN client. It doesn't seem to work when co-existing on a PC with other clients on it (Cisco, Checkpoint and others) but does work if it's the only c

Managing policy with Panorama - what is best practice?

We are looking at deploying multiple firewall instances managed centrally by Panorama, and would like to maintain a global baseline policy across all of them.

We recognize that regional instances will have specific local policy requirements not shared

Panorama - Master device

Hi,

could anyone tell me what does really mean the voice "Master Device" in device group configuration in Panorama?

Unfortunately the only documentation about this says:

"[...] select a master

device from which the user information will be retrieved from