7050 system log forward for traps running 7.1.6

If I need to forward 7050 for system tramps only can I bypass Panorama or do
I need to upgrade to 8.0

Device block on MAC without Global Protect

Hi, Would anybody know if there is a way to block devices on a LAN (without Global Protect)?  I know reservations and static IP's can be assigned but asking the question to see if it's a possibility.

Many thanks

Will

Traffic Flow in SSL VPN

Hi All,

Please can someone explain me the traffic flow in SSL VPN as am a bit confuse about it.

I might come up with more questions once this discussion starts.

Thanks

What priviledge need user-id agent user to work with WMI?

Hello,

We need to know the priviledge minimum to the user-id user to work with the WMI probes and it can't look the security log of DC.

The problem is that on the security log appears one user of application siteadvisor that is installed on every PC of

port 443 for Minemeld not opened. Cannot log into Web Console

I am brand new into Minemeld.

I followed the link

https://live.paloaltonetworks.com/t5/MineMeld-Articles/Running-MineMeld-on-VMWare-desktop/ta-p/72038

for installation and followed steps.  All seemed to work fine.

There was a note that to acces

Error when trying to renew certificate "Failed to write issuer certificate to disk"

Hello,

When trying to renew some certificates (already expired and signed by a internal windows server) we receive the error message below:

"Failed to write issuer certificate to disk"

This is a VM-100 model

We have other boxes (PA200 and 3020) with

Generate an e-mail alert from a DENY policy

Hi

Just a quick question, one of my policies on my PA5020 is a "Deny_Any" policy whereby if no application matches the policy base then it gets denied. The only time I see this is when I view the monitor | logs | traffic.

Is there any way I could get

LDAPS inexplicably working on 2 DCs, not on 3rd

Please suggest a better title, this issue has sent me through the ringer.

We have a site with an MPLS connection down.  The PAs use the domain controller in our datacenter for authentication for both admin, and GP users, which is over the MPLS.  LDAP

How to SSL Bypass based on application

Hello,

I wanted to share a solution I have implemented recntly.

Bypassing SSL Decryption based on applications was a request I had from many customers.

I know there is an FR for that. but until then, with PAN-OS 8, it is possible to achieve differentl

ERR_SSL_PROTOCOL_ERROR GlobalProtect

Hi All,

When I try to open the URL of our portal I get the following error in Chrome:

Chrome: ERR_SSL_PROTOCOL_ERROR

Firefox: SSL_ERROR_HANDSHAKE_FAILURE_ALERT 

I also imported the wildcard certificate to 'Personal' and 'Trusted Root CA.'

Logs:

PanGP

Single Pass Parallel Processing SP3

Hi All,

Please can someone explain me the concept of SP3 in simple terms as i dont find any good resource to understand this.

I understand that passing the traffic through different devices will impact throughput and add latency,but how does PA works

Panoram and Clusters

HI

Sort of asked this before, but with a couple more months of experienace, I am back again

So I have a cluster I want to manage with panorama

Object and polices work great... templates not so good.

So I have a cluster setup for Global protect, but I