How to create SSL Custom App-ID

I'm testing to create SSL custom signature from WebUI.

However, we don't have enough materials to create that.

Do you have any materials to create SSL custom signature?

Or could you provide any sample config?

Regards,

Takeshi Kawai

Has SNMP changed with 3.1?

I pointed our network monitoring software at our PAN under 3.0.x and it detected all the interfaces and let me monitor them.

Now, having upgraded to 3.1.1 I checked today and noticed it's only monitoring the eth interface assigned to the LAN/trusted z

Why is chatroulette classified as audio streaming?

Going over yesterday's app ID updates, it shows chatroulette as a new app, but it's categorized as media/audio-streaming. Shouldn't it be in the collaboration/voip-video category, along with the likes of camfrog and stickam?

High CPU Usage on PANOS 3.1?

Upgraded our PA-500 to 3.1.  It came back up around an hour ago and the CPU usage has been on a pretty consistent 65-66% ever since.

I presume either this is normal, or not normal - how can I see what it's doing please?

Also even now a couple of hours

Users/groups informations are not displayed while configuring a policy

Hello,

The issue is while configuring a security rule, by cliking on the "source user" filed, the groups/users are not displayed for choice. I'am using PAN-OS 3.0.9. The firewall is connected to UIA and he is receiving normaly users inofmrtaions.

Regar

Response page for blocked FTP, SSL, etc...

Hi all,

Why is there no response pages for users when application like ftp, ssl, etc.. are blocked?

I have software version 3.1.1. and everything works with blocking but users don't see any info about it. Problem is, that kind of traffic is blocked at

Web servers redundancy inside PA with PBF

Hi, is there anyway to have web servers redundancy with PBF. What I would like is to use PBF to balance the traffic between two internal servers and, of course, monitor this servers and chnge to one of this in case the other fails. I'm testing in lab

Upgraded to 3.1, URL wildcards not working

Just upgraded to 3.1.0 from 3.0.6.

I had the following URL filtering profile that I used on an inbound rule with SSL decryption so that people could only connect to valid Exchange/Outlook Web Access URLs:

webmail.ourdomain.co.uk/favicon.ico

webmail.ourd

SSL VPN and other options for client VPN

I'm currently using a Watchguard firewall for our remote users to connect and authenticate using built in Windows (and Mac) VPN.

I have a Palo PA-500 in the Dev environment being configured to replace the Watchguard firewall, however we have come acro

Problem with the "get ldap tree" bouton in the user agent for AD

Hello,

The "get ldap tree" bouton does not display ldap tree of the AD on UIA 3.1.0 and 3.1.1. What can be the issue, and is it critical for the agent to function correctly?

At the same time, agent is able to get groups and mappings from AD.

Regards.

URL Filtering Profiles - Category/Action

I'm torn even asking this question, but it seems like it might be a nice feature but at the same time possibly misused. It might also be a support nightmare when people call saying they can't get to a URL.

Would you consider adding a "Block-No-Log" to