PA-2000 Link speed autonegotiation issue with juniper switch

Hello,

When I connected a PA2000 device to a juniper switch the link state didn't go up, but when i fixed he link speed on both devices the link worked fine.

Is this a known issue? or is there any fix for that?

Thanks,

Ahmad Rabie

Block Netflix

Hi,

Anyone know the best way to block streaming from Netflix app?  I create a block policy for it but that didn't seem to work.  Am I missing something?

-Tevin.

After downgrade from PAN OS 3.1.4 to 3.0.8, the unit keep reboot.

Hi All,

Need your guys advise. I am having issue with PA-500. I downgrade the device from PAN OS 3.1.4 version to 3.0.8.

Once i downgrade, i was unable to enter to the maintanance mode and the unit keep rebooting by itself.

Anyone encountered this befor

ddos protection

Hi,

What kind of protection that I can enable to block ddos attacks?

thanks.

error while updating the brighcloud DB

hi,

during the update process of the webfilter DB am getting the following error error in SSL_read() call ?

while i can downlod the aapp-threat prevention.

Vuln Sigs for SQL Injection

There are several sigs described as "HTTP SQL Injection" (30514, 33338, 33340, 33305, and maybe others) that are server-side mediums with a default alert. What are these signatures looking for? Atypical SQL statements that indicate an attem

Security policies, mixing app and "service" options, ping, PPTP and NAT?

I've a bunch of Citrix servers that I need to have a security rule for.  I put together an address group for their public IPs, and I see that there is a "Citrix" application definition.

However, the Citrix servers also need port 8080 routed to them fo

Custom application

Hello,

I would like to creade a Custom appl at the moment based only on host on http GET request.

from wireshark I got host: www.facebook.com\r\n (see sniffer.jpg).

I created a custom app as from attched Custom APP.pdf

I seams that isn't reconized, what

Is it possible that a firewall configured in tap mode block traffic?

Hi,

I have recently installed a pan device in TAP mode, with a port mirroring on a cisco switch that copy traffic to the tap interface. On the policy cofigured to allow all between TAP zone and TAP zone, i have configured default security profiles, sp

"Release Notes" now require a username/password

On my PA-2050 (version 3.1.4 - two boxes in an HA pair) under Dynamic Updates, for just the two Antivirus listings, when I click on Release Notes, a pop-up window tells me "The server updates.paloaltonetworks.com at updates.paloaltonetworks.com requi

ata2.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x0.

This morning there were 3 unusual system alerts on our PA-4020:

1.

type: SYSTEM

subtype: general

config_ver: 0

time_generated: 2010/09/29 02:07:32

vsys:

eventid: general

object:

fmt: 0

id: 0

module: general

severity: medium

opaque: ata2.00: exception Emask 0x0 SA

New to PAN - Traffic log Destination column question

Hello,

What information is the Traffic Log's "Destination" column giving me?

We are just setting up a pair of PA-500s and I am perusing through the traffic log and noticed that the destination column doesn't seem to reflect the website destination that

Cannot open group_memebers.txt file, casue is 2!

An error like in the subject occurs in the log. The UIA is unable to read group information, nor IP to Username information.
Tested with 3.1.1 and 3.1.2 version. Server Windows 2003 R2. Please explain what does "cause 2" mean.

Best Regards,

Radek