Traffic Logs not showing up on Monitoring Tab

Hi All,

Device Type: PA-220

Software Version: 8.0.11-h1

Im having an issue with old traffic logs not showing up on the monitoring tab. I can see live logs but if I want to check the logs for the previous day or previous 2 days then nothing shows up. I

How to Block Google images Breakout ?

We are having issues with students playing google pacman and Atari Breakout on google images .

Has anyone got any suggestions on how to block these ?

Decryption Office365 with Wildfire

Hi Expert ,

Can it be possible to use feature wildfire and decryption office 365  it can be ? or have a limitation? 

Please suggest to me 

Error fetching External Dynamic List (EDL)

Hello,

When trying to fetch an EDL from a web server configured without support for TLSv1 (only support TLSv1.1 or 1.2) the result is "Server error : URL access error".

I don't know if PAN-OS 7.1.18 fetch client for EDL only support TLSv1. Checking c

BGP Import AS Path regex to accept/remove my own ASN

I have  a standard L3 VPN setup where I have VR on each side acting as the CE (customer edge) device.  CE-PE protocol is BGP on both sides.  So, essentially, i have an eBGP peering in which I have to receive prefixes from the distant end, which of co

Asymmetric Routing and TCP syn check (Pulukas Solution)

Hi Everyone,

Asymmetric Routing and TCP syn verification is a common issue and there were many articles on how to resolve that, basically

1 - To change routing itself and make sure there are no asymmetric routing in the network - best from PA point of

Support for inspecting SSL message for kafka connect

We are using Kafka for messaging and have a requirement to inspect the SSL message sent to kafka broker from kafka connect. Kafka using binary tcp protocol with kafka broker listeners on PLAINTEXT://9093  (without SSL)

Can paloalto decrypt and inspec

Does Palo Alto (VM) firewall supported in VirtualBox?

VPN certificate expires

Hey!

My firewall is a PA-3020 with 8.0.7. There is a Global Protect gateway and portal, users can connect via Global Protect.

As portal address in the global protect app, we are using an address that is availabe in public dns.

Additionally, there is a p

What is application db = 0 and app.id c2s node (0, 0) s2s node (0, 0) in session id command

Hello Folks,

I am looking for some more information on session id command outputs. I see a session in free state with 

 application db  = 0 and  app.id  c2s node (0, 0)    s2s node (0, 0) . What does this mean ?

Is this that app-id engine of PAN is not

sync to peer failing

all of a sudden my sync to peer is failing anything I need to look at?

Linux and TCP keepalive

Hi

Is there some reason that PA have a 1 hour keepalive value, where linux has a 2 hour timeout value.

Whats considered best practices ... reset the PA to 2 hours or bring down the linux keepalive value to say 1800

A