How to verify data plan resource information

As far as I know , the "Resource Information" field on PANOS is control plan resource information.

How can I to verify data plan resource information on GUI or CLI .

x-forwarded-for and User Identificaton

We have configured x-forwarded-for flagging along with the User Identification.

Traffic logs from a tap upstream of a (squid) proxy carry the x-forwarded-for flag, but the IP is not resolved to a user.

Is this expected behaviour? (i.e. is ip-to-user tr

User-ID not detecting logged off users?

I have the User-ID agent configured and working nicely, however I just noticed a few entries in the URL logs showing for the domain user who last logged on to one of our PC's when I know that the PC is currently logged on using a local account rather

SSL Forward Decryption - Understanding Override

I'm looking at the pros and cons of enabling forward decryption.  I noticed there's an "Are you happy to continue" over-ride option but it's global i.e. it's simply on or off.

I assume this won't play nice with any non-browser based https downloads?

Al

Which variables are allowed in response pages?

According to Custom-Block-Pages-TN-revB.pdf the variables available are:

<user/>
<url/>
<category/>
<appname/>
<pan_form/>
<fname/>

Where <pan_form/> can only be used for captive portal and url filtering continue and override page.

But what about the others?

Can a PA replace data in a stream?

PA have support for datafiltering but is it possible to also, when a rule is triggered, to replace the data and pass it through?

Like exchanging "User-Agent:" in all http-requests (where User-Agent exists in the header) into a common User-Agent string

PA-4000 "add rule" limit question

What are the new "add rule" entry limits for SSL Decryption ,App Override, QOS, and Captive Portal?

False Positives problem of anti-virus

Hi,

I received a virus block message (  Client-IRC/IRC.mirc.0113 ) when I entering the following URL:

http://pmb.update.sony.net/SPU/SPUDownloadManagerInst.exe

But this file was passed by other virus scan software (Sophos).

Was It a false positive or not

Dynamic Update Failing

With in Pano and direct on 3 PAN devices - I am receiving the below error when attempting to download yesterday's threat update.  I am going to try a manual upload.  This is the first time this has event has occured.  Are there any issues with downlo

Simply correlate theats and URL's

I'm surfing throgh differents threats (virus,spyware,etc) in the monitor windows and in some cases I find out in the other filed the URL wher it came from otherwise moslty of the time I just see the source/destination IP.

My question: is possible to c