About KGC

KGC · ‎07-15-2011

We are trying to produce a report which summarizes the URLs visited by a specific user along with the total bytes downloaded from each URL. It seems that the bytes are available in the Traffic log, but not the URLs; conversely, the URLs are in the URL log, but not the bytes. Is there some way or producing reports which correlate the various logs? Thanks!

KGC · ‎07-11-2011

Thanks! - I was looking for this on Panorama, which explain why I didn't see it.

KGC · ‎07-11-2011

Is there a way to have notifications sent on system log events, either via SNMP or email, in 3.1.8? Perhaps I am just not seeing it in the config, my apologies. Thanks.

KGC · ‎06-23-2011

So we are up to v4.0.3 and no word on whether this has been addressed or even logged as an issue. Is it?

KGC · ‎05-31-2011

I think Policy-Based Forwarding will do what you are looking for.

KGC · ‎05-17-2011

Hi Mike - any update on this feature? It would be useful for us to take better advantage of our allocated disk space to increase the traffic log quota beyond 50%. Thanks!

KGC · ‎05-04-2011

Perfect - thanks. This finally gives me a reason to even consider looking at Twitter

KGC · ‎05-04-2011

Hmm, but we never ran on this version of content updates on our firewalls. Panorama did download and apply it locally, but the firewalls aren't set to auto-apply. And I just saw the retraction accouncement posted here - is there any way to subscribe to these?

KGC · ‎05-03-2011

Thanks - so what would be the work-around in the meantime? Specifically, we have users who use IE/Windows Explorer as their FTP client to transfer files to and from our internal server in the DMZ. They have always had the "Use Passive" options checked which worked until we moved to the PA firewalls. Now it does not work. The same FTP server (using an identical security rule) performs fine externally using PASV mode. The only difference, as you mentioned, is the NAT rule: from the trust zone it uses a dynamic ip-and-port source translation, and from untrust it uses destination translation on TCP 21. Is there anything we can do on the firewall to work around this issue?

KGC · ‎05-02-2011

I am confused - so we should *not* set our FTP policy for application-default? We are having the same issues - our outbound FTP (using the ftp application and application-default service) will only allow active mode FTP. Yet oddly, out inbound FTP rule using the same configuration is working for both PASV and active mode. ???

KGC · ‎04-12-2011

Can I ask a stupid question - is there a simple way to report on the throughput on a given interface?

KGC · ‎03-22-2011

Maybe instead of specifying your Service as "any" try using "application-default" ?

KGC · ‎03-22-2011

Thanks - I didn't see this document, however I did try compatibility view without any success.

KGC · ‎03-21-2011

We have a large amount of ssl traffic which we would like to better break out and identify for clearer reporting. For the most part this is inbound traffic destined to our public application servers, so we know what it is without decrypting it, but it's all lumped together with other "ssl" app traffic in the reports. Can this be achieved with an app over-ride without defining a custom application, or is there another/better way?

KGC · ‎03-21-2011

After upgrading to IE9 I can't seem to get properly redirected to the Case Management page from the general support langing page https://support.paloaltonetworks.com Instead I get redirected to a page (on htps://na5.salesforce.com site) with this error: DO NOT login from this page! Please go back to Support Site There is an issue with your account, please go back to Support Site and click on 'Case Management' link. If the error still persist please email us at support@paloaltonetworks.com. Anyone else having this issue?

Member Since	‎12-16-2010 11:36 AM
Date Last Visited	‎04-12-2024 09:50 AM
Posts	71
Total Likes Received	7

Online Status	Offline
Date Last Visited	‎04-12-2024 09:50 AM

About KGC

Re: Protecting private clouds

Protecting private clouds

Re: Best practices for implementing access to Office 365?

Best practices for implementing access to Office 365?

Re: FQDN not resolved

Re: Update application v 339

Re: Update application v 339

Re: Update application v 339

Re: Update application v 339

Re: Antivirus Dynamic Update Issue

Re: Panorama 4.0.1 commit error

Re: How to monitor bandwidth on Internet interface

Re: SSL Decryption

Re: Another download is in progress

System Log monitoring via email?

Re: Update application v 339

Reporting URLs and Bytes together?

Re: System Log monitoring via email?

System Log monitoring via email?

Re: Disk space reported incorrectly in PAN-OS 4.0.1

Re: Poor Man's HA

Re: Change log quota

Re: Passive FTP

Re: Passive FTP

Re: Passive FTP

Re: Passive FTP

Re: same zone and throughput

Re: Unable to allow only ICMP Echo Request; Firewall passes all the traffic

Re: IE9 breaks redirect to Case Management?

Identifying applications inside ssl without decrypting

IE9 breaks redirect to Case Management?

Unlock your full community experience!

About KGC