How to update a URL to Reflect New Category in Brightcloud-DB?

Hi,

anyone knows: how to update a URL to Reflect New Category in BrightCloud-DB? Or how to update base db (device) to reflect cloud db? Thank you.

Static Route ECMP Monitoring upstream

Hi All, 

Probably a quick question. I am attempting to implement ECMP with two static routes. Such as:

ECMP on

e1/1 = 192.168.255.9/29

route 10.0.0.0 255.255.255.0 192.168.255.11

route 10.0.0.0 255.255.255.0 192.168.255.12

My question is, if 19

Permit or Block Traffic based on Path within URL

Is there a way to block or permit traffic based on the path in a URL through custom URL Categories or any other means Palo Alto has? I have found you can filter based on domain and sub domain. however, when i try to specify the path after the domain

Response Page on Internet Zone

Hello Community,

our customer has a Cluster of PA-3020 with PANOS 7.0.2.

We have enabled Application Block Page and the Internal users can view it properly.

Customer has a rule to permit Web-browsing traffic from Internet to DMZ.

When users try

XML API

hi , i enter follow . but occurs error (Malformed Request)

https://10.21.63.99/api/?type=config&action=set&xpath=/config/devices/entry[@name=%27localhost.localdomain%27]/vsys/entry[@name=%27vsys1%27]/rulebase/security/rules/entry[@name=%27rule1%27]&e

PAN could generate system log about max session and cps?

Hi.

I want to know about system log.

When Max Session fully exhausted, system log could be generated?

When CPS limit reached, system log could be generated?

PANOS 5.0 could generated a system log for high DP CPU.

I want to know description of system log

question for block amazonaws

Hi I recently got many amazonaws.com IPs listed in my attacker list from my daily report as below. How do I block all traffic from amazonaws, and I cannot find it from my traffic monitor and why? Please give me some hints?

52.5.42.249 ec2-52-5-42-2

How to generate SNMP Trap for testing purposes on PAN OS?

Hello

I'm on PAN OS 6.1.8 and I try to test my reporting/alerting system.

Is it a way to generate trap from PAN os from CLI/GUI?

P.S. This doc https://live.paloaltonetworks.com/t5/Configuration-Articles/SNMP-Trap-for-Port-or-Link-status/ta-p/56

sslvpn: exited x times waiting y seconds to retry

Hi,

Getting following error:

sslvpn: exited x times waiting y seconds to retry

l3svc: exited x times waiting y seconds to retry

Anyone having same messages? Hardware is 2050 with 6.1.7 running.

Regards,

Kevin

python-script How to add source address to gpolicy (XML API)

Hello,

i would like to add source address and destination address in a policy using XML API. below syntax is right?

/api/?type=config&action=set&key=key_value&xpath=/config/devices/entry/vsys/entry/rulebase/security/rules/entry[@name='test']&element=

RADIUS authentication and multi-vsys configuration

Hello,

i have a pair of 5020, with multi-vsys environment and i want to be able to separate admin access based on vsys and read-only/read write access. I successfully configured following admin access scenario, using external RADIUS server:

separate

What is the "Allow" action in Data Filtering log for Wildfire?

Hello,

I understand what forward, upload, and upload skip mean in the Data Filtering logs for wildfire. But some files I see the Action listed as "Allow".  What does this mean exactly? I've been searching for an hour and can't find any reference to