General Topics

Triage / troubleshooting a hung PA box?

I have a PA-2020, I upgraded it to 3.1.4 a week or two ago, and haven't touched it since.  It is not currently live, I just have the mgmt port hooked up as I'm still trying to copy all of my old Sonicwall rules into PA format.

I went to continue worki

Creating Youtube App Filter

I have a need to block Youtube via application filter like it used to be before the update to the application filter that allows the front page to be viable, but not any of the videos.  I used the custom filter document and was able to get most of th

TLS

We have a rule on our PAN which allows tcp/25 app. SMTP to our MTA.

The MTA allows also TLS which establishes an encrypted connection on the same port.

Is therefore another PAN application necessary?

Thanks,

Rainer

8.25 Content Update not working

Hello,

The content update that was released today is showing a size of 0k in the console and completes the download - however, still shows 0k after download.  I have option to "install" - but I am a little leary installing and commiting a 0k file.  Co

PA 2050 Port forwarding question

I'm new to the PA 2050.

I'm trying to determine the best way of forwarding multiple incoming services on multiple external addresses to multiple internal servers. My PA 2050 is set up in L3 configuration. I have NAT policy rules for all my external->i

panorama - define rules between zones

Anyone who can tell if the panorama has the functionality to create rules between zones or is has at least the ability to define network objects ?

Now were only able to define rules between the zones ANY. Is there any support like polymorphic objects

Custom Reports

When do newly created custom reports in the PANOS 3.0 series show up under Custom Reports on the left-hand side of the GUI?

I created several today and they're not appearing.

Thanks!

Assign static IP to vpn clients

I am in the process of migrating users from old cisco vpn client to cisco vpn concentrator to the Palo SSL vpn.

About 50% of our users require a static IP each time they connect so they can bypass a firewall at a sister company to access services.

How

How to block file transfer for gmail and msn-fire-transfer

Hi :

I have tried set SSL decryption for category "web-base-mail " .

And set the file-blocking profile --->applicatio:gmail-base ; file-type:any ; action:both block.

But it seem not work ,  how can I to do this ?

:smileyconfused:

Thanks.

Setting up an IPSEC VPN?

We want to use our PA-500 (3.1.3) at our site to create a tunnel to a remote site which will have a McAfee/Secure Computing Sidewinder.

I've never used IPSEC VPN before so I guess I want to be clear on how I do this.

Our PA-500 is setup in a simple L3

Netconnect error..

Hi!

For somehow my netconnect is screwed.. When I try to connect to our SSL-vpn site it just says that COnnecting.. please wait.. The status does not change even if I wait 10 minutes..

When I check the logs I see:

2010 08 13 12:57:55, Pan service exits
2

Big problems committing a job

Dear all.

We are running a pan500 only for internet usage. It was fine before the summer but when I returned from vacation things were not so great.

When I am committing a job (whatever job) I get this fail message.

We are running panos 3.1.3