General Topics

vsys CPU utilization

Just wondering if the more vsys you add, how much more CPU utilization or resource utilization will be used?  Does the more you add degrade the system at all?  I'm looking at a 5060 or a 5560 with at least 7.0 OS.

Is there any documentation that stat

Anyway to block Webex plugin?

After hearing the news that the Webex extension in Chrome has a serious vulnerability is it possible to block this at the Palo Alto?

http://arstechnica.com/security/2017/01/ciscos-webex-chrome-plugin-opens-20-million-users-to-drive-by-attacks/?commen

Use wildcard in user/group based policy

Hi,
We have a Splunk Server that sends to your id-agent (on a windows server) the information of guest users.

Now on PA We can se user@acme.com in the logs, is possbile for us create a rule for all users from acme, without define each user?

So a group

Netflow bandwidth usage and link-aggregation

We've added a netflow server profile to 4 sub-interfaces on ae1 that connects ISP. The netflow is then reported to Solarwinds where we have poll and collect netflow from these sub-interfaces. But we are also seeing notifications i Solarwinds that all

one globalprotect client two portals

I have two global protect portals one for staff and one for contractors. I regularly have to test both and the only way I have found to do it so far it to change the portal name on the client. Is there anyway to add both portals and toggle between th

Virus/OSX.WGeneric.lcwwz

IP address (IP: 4.35.21.146) is pushing out a Google update (url:GoogleSoftwareUpdate-1.2.7.43.dmg) but Palo Alto show it as Virus (Virus/OSX.WGeneris.Icwwz)

Firewall optimizer

Any one out there using firemon or algosec to optimize your firewall? I am interested in your opinions whether you like it or not and which one is better or if there are other options

Packet Routed to Different Zone counter incrementing

I"ve been seeing on untrust interface count of Packet Routed to Differenet zone increasing.

I've been facing issue with browsing for few minutes. When i browse websites it shows "connecting" n browsing will be slow.

After 2 minutes browsin will be fine

Does Global Protect check connection quality and switch portals if needed?

Is it possible to make Global Protect check someone's connection quality and if the quality is better to another portal, then switch to that one seamlessly? 

Say we have users connected to a portal in Los Angeles and the connection becomes less than

HA in Virtual Systems

Can high availability be controlled per virtual system?

In other words, is it possible to have an active/passive HA pair with 2 virtual systems, where one virtual system has unit 1 active - unit 2 passive and the other virtual system unit 1 passive -

Embedded Minemeld UI Logs Issue

Currently using a Docker version of Minemeld, which is embedded in a web application using an iFrame.

All works fine except for the Logs page, which times out.

Looks like it maybe be a restriction enforced which is not allowing frames.

Any tips on where