Upgrading to Pan OS 5.0.4 Error

Hi All,

I just attempted to upgrade my existing pan os 4.1.2 to Pan 5.0.4. Everything went fine but my main link to router was down and so there is no internet access. I restarted the router and it was still no link. So i downgraded back to 4.1.2 and

botnet-domain alert in GUI

Hello,

on the cli show command I see under "XX Anti spyware" profile the botnet-domains policy but I'm not able to find it on GUI under object-securityprofiles -> antispyware.

Where botnet-domain behavior is configured on GUI ?

thank's .. here below the

Who here has implemented GlobalProtect on a large scale?

I'm asking for folks on this discussion board to chime in with their experiences designing, implementing and supporting a larger (around 1,000 users) GlobalProtect VPN implementation.

What are your experiences deploying and maintaining the client? Did

Reverse-Proxy

How can I use  Palo-Alto as reverse proxy. Suppose I have a DMZ zone that has all the web servers and I want the DMZ interface to act as reverse proxy.

The untrusted interface facing the internet would do the NAT translation. Then send the traffic to

Sessions aging , scaling , app tricking etc

Hi,

Could someone briefly describe the significance of these values shown in the output for "show sessions info" and how they may be tweaked from a performance perspective ?

-

Session accelerated aging:                       True

  Accelerated aging thre

Vulnerability Vs Successful Expolit

Hi,

I would like to know how easy or hard it might be to link a vulnerability to an actual successful  exploit.

The threat details are provided below and a screenshot of the actual threat incident seen in attached. I am assuming this is just a random

Local admin accounts on PAN firewalls?

Hi,

We use Panorama to manage or configure individual PAN firewalls. There is however times when we need to connect to the individual firewall for troubleshooting or faster response while monitoring. The Panorama is configure with Authentication Profi

Need help in OID

Hi Guys,

            I like to know the exact OID to find interface IP. Using RF-1213 MIB, I am able to find the bytes transferred or up status, how how do I find the IP of an interface using an OID?

Regards,

M.Viswesh

How to block Ultrasurf?

Hi guys,

i create a rule to block Ultrasurf on top and a rule to allow any below it. but ultrasurf still can bypass. surprisingly once ultrasurf connected to its server, PAN unable to logged the traffic. No traffic looged in URL filtering, Threat and

High Ping times on Speedtest.net and slow web browsing

We have been experiencing very high ping times on speedtest.net (6336+ seconds) and very slow web browsing to international websites (National sites appear to be running fast).

(I understand that speedtest.net cheats and sends very small HTML files to