General Topics

SCP export log on PA-7050 and SCP import log on VM-100

Hi,

Anyone know if I can run a “scp export logdb” on a PA-7050 and then restore this logdb via a “scp import logdb” on a VM-100 ?

I understand that this would override all existing logs on the VM-100 but that’s fine, I just want to make sure this would

ending captive session with browser close

Hi,

Captive Portal is used for all LAN (no Active directory)

we want to kill captive portal session when a client closes the browser.

Any idea ? (we can install scripts or etc. to computers, they are not visitor computers)

Is the behavior in my tests normal or maybe I missed something?

I have a specific question. Our firewalls are able to decompress some files like .zip or gzip and after that we are able to analyze their content and detect some malicious files with threat prevention or WildFire.

For the .cab file, the cabinet file c

VM Panorama utilizes 100% CPU always

We had a panorama VM upgrade recently to 6.0.8 with 4 cores CPU and 16 G memory.The moment it boots up the management CPU is always close to 100%.

Any one ran in to this problem or any suggestion would be helpful.

Palo Alto Syslog severity level compare to Syslog Protocol RFC 5424

Hi guys,

Do you know how Palo Alto interpret the standard Syslog protocol severity;

RFC 5424 The Syslog Protocol

Numerical         Severity

0       Emergency: system is unusable

1       Alert: action must be taken immediately

2       Critical: critica

allow googlebot crawler only

I found reference to this discussion but there were no details specifying how to allow googlebot crawls only.

How to Allow Googlebot Through the Firewall

I would like to only allow google and bing if that's possible. I can see options for google-analy

GlobalProtect issue

Hi all,

We have problem connecting to a VPN using GlobalProtect. We opened a case but maybe someone has an idea what's going on..

The error message on GP client is

Error(4960): failed to get the tag gateways(T1404)

Error(5401): Failed to get gateway lis

L3 gateway Interface traffic relaying

Hello All,

just want to share one thought about problem which I faced with. One of L3 interface on PAN 500 was configured as default gateway (192.168.0.1/24 sec zone "trusted") for one network. On that trusted network I have two servers, one terminal

Palo alto fitrewall that it does not take decision upon first packet while other firewalls take..

I came to know one thing about palo alto fitrewall that it does not take decision upon first packet, it takes decision after three way handshake.

While other firewalls take decision after first packet. What does it mean and how it is benefiical in ter

NAT Rules Log / Highlight Unused Rules

Hi,

I'm doing maintenance and have doubts about a NAT rule.

I have enabled the "Highlight Unused Rules" and this rule seems to be that using currently. But we believe that this is not in use.

How can I see the activity related to a policy NAT?

How can I