Resolved! Using variable for PANOS version when using CEF (Arcsight)?

According to https://live.paloaltonetworks.com/docs/DOC-2835 the (current) certified formats for use with CEF is:

Traffic

CEF:0|Palo Alto Networks|PAN-OS|4.1.0|$subtype|$type|1|rt=$cef-formatted-receive_time deviceExternalId=$serial src=$src dst=$dst s

Resolved! copy security profiles and log options

Hey all,

Do you find it annoying you can not copy security profiles and log options the way you can copy zones, objects, user, applications and services from one security rule to another through the GUI?

Manually adding the same security profile for a

Resolved! DMZ or NAT for web server

Hi there,

I'm looking for some insight on the best security design for several externally accessible web applications. We have several public IP addresses available and can simply do a 1:1 NAT for each web server, put it in a DMZ, or both. Each web se

Resolved! panorama user for specific vsys

Hi,

we created a user with device group and template admin role(only selecting monitor allowed)

also created a user with that role and choosing only 1 vsys for access control

when we logged in with that user we can see other vsys's traffic logs which ar

Resolved! What is the 'Session metering: sessions throttled by management session threshold' on drop count?

Hello,

I am testing about VM-FW on ESXi environment.

But Traffic from VMs don't go through Internet.

There is VM-FW between VMs and Internet.

So I have checked PCAP and packet filtering.

I have seen all packet drop.

Drop count name is 'flow_meter_host_thr

Resolved! In management plane there's some mysterious process.

Hi guys,

I've found out that our customers PA keeps high management cpu usage, and it seems that this process use most of the resource.

what's the 'appweb3' process and why the user is 'nobody'? Is there somebody who can explain this??

Thank you very m

Resolved! Paloalto Panorama Communication after license expired

We have couple of Paloalto 5050 firewall, which license got expired recently.   Is it possible to connect these firewalls with Panorama.

After device has been added in Panorama with device serial number, it is not connected and device IP details not s

Resolved! URL Log displays a lot of '%16%03%01/' as url for SSL traffic

What's wrong with the URL filtering and logging of the PaloAlto FW? We have many URL logs like '%16%03%01/' when users visit SSL websites.

Is URL detection for SSL websites broken?

Are there other users who have this problems?

We are not 100% sure but i