About lardsa

bpappas schrieb: @mhuels: Have you configured the CRL/OCSP options on the Device tab -> Server CRL / OCSP Settings screen? -Benjamin Hi Benjamin, up to now, we did not have configured anything in the CRL/OCSP tab. Since 5 minutes, we have enabled the checking of revocation lists via CRL and OCSP. Testing on https://188.203.119.3 , the firewall blocks the ssl traffic (the browsers shows a timeout). Although it would be nicer not to drop but to bring out a security warning or an invalid certificate, this behaviour is tolerable for us. There are not so much diginotar certificates anymore ... Thanks for your hint. Manfred ... View more

Thanks, Kobus.  I will bring this up with BrightCloud directly. --Doris ... View more

Hello, Please open a case with support if you continue to have problems and we can take a detailed look. Thanks ... View more

This is what works for us *.facebook.com facebook.com/ Hope this helps ... View more

Good point, but i cannot do that for now since users are using yahoo messenger. I guess i'll just open a ticket for this. Thanks. ... View more

Hi, There is no absolute good answer about this. Security mongers will scream about this heresy while bored admin will say 'who cares if no virus comes in?' I opened broswer-based on 80,443,8080,8443,81 and it suits 99% of user needs. ... View more

@BPERE Sorry, this is not part of the blocking of the https web page. The blocking is still performed by the URL Filtering engine. It does allow the Palo Alto firewall to display the block page rather than a default browser error page. In the URL filtering log it will display the ip:port rather than https://www.facebook.com . Ben ... View more

Hello, Source IP: YourMailServer DestinationIP: Any Source Translation IP Type: ip-static Translated address : PublicIPAddressYouWant Bidirectional: yes Destination translation: none ... View more

I would really like to be able to ignore the errors and not have them appear in the commit output.  We have several that alert but don't actually appear to cause an issue, Facebook posting requiring Facebook chat is the one that comes to mind. ... View more

Are you using AD to log in? Is it possible that somone is logging into the laptop with a local user account? If that is the case, UserID will track all activity from that device as the source user of the last person that logged into the device with AD. If you were the last person to log in and someone else logs in with a local account, I believe your name will still be in the FW logs. The user ID agent polls your AD servers... If it is still in the AD DC security logs that you were the last person to log into the laptop, that is what the PA Firewall will put in its logs. I would check the UserID agent and the domain controller and see what users are showing up there for that laptop. If your AD Logs are different than what your PAN agent has or the PAN agent is different than what your PA Firewall is showing, that would be something worth mentioning to tech support. What version of the PAN UserID agent are you running? ... View more

http://kb.mozillazine.org/Error_loading_any_website "Temporarily turn off ad-blocking.  Extensions and Internet security  software that block advertising or other unwanted content can cause  problems loading webpage content" I can attest that noscript on FF, preventing scripts/ads to load can slow down and even prevent page load. Just a thought. EDIT: This link (at StackOverflow) provides more discussion of Blocking vs NON-Blocking Advertisments.  You may find that blocking some Ad sources are generally problematic; and blocking ads in general for certain sites to be problematic given the above considerations. http://bit.ly/qhHtQz ... View more