General Topics

Is there a "history" command in the CLI of Palo Alto Firewall?

Hi,

Is there a "history" command to see the list of commands you've run? 

Thanks

Tool to generate 'phash' style hashed passwords?

We have a need to create password hashes offline, is there a tool or script available to take a cleartext password and generate a phash?

For example, the audit team wants to be able to select a password and generate the hash, so we can later paste int

Commit Warning for Antispyware

Hi guys,

Trust all is well. After the firewall upgrade to version 10.2.1/ 10.2.2, we are getting the following errors after each firewall. Changes/commits are executed successfully. And everything seems to be working without problems.

Warning: spywa

The existing DNS servers and LDAP server is reachable by the management interface. The additional set of DNS servers and LDAP server setup will have t

Hi Team,

The existing DNS servers and LDAP server is reachable by the management interface. The additional set of DNS servers and LDAP server setup will have to access via an interface other than the management interface.

Could someone please ass

Custom App-ID for Tinder

Good morning all,

We have had a situation occur where students and teachers are 'liking' each other on the Tinder dating application (www.gotinder.com), bit of a strange one but surprisingly looking on our PAN the firewall doesn't recognise it as an a

Merging two Palos Config

Hello everyone

I have two Palo PA-850s with software version 10.2.2 that are running in different locations. To merge all the services to one location, I must merge two Palos configurations from ACLs, NATs, and Interfaces to a single device (or the H

SCP Import returns Server error : Failed to import logdb

When exporting logdb file using SCP  to different linux machines there would be no errors but when importing the same file we receive the error: Server error : Failed to import logdb, the files would list during importing but the error would appear n

shadowed rules not showing in cli commit

I need get the shadowed rules name list and remove them, my firewall OS version is 10.1.11, the shadowed rule warning is not there any more in commit, is there a switch on command to show this warning?

Packet Buffer Protection Configuration

Is there something misconfigured with my packet buffer protection or is BPA and AI-Ops just flagging it incorrectly?

Configure Packet Buffer Protection (paloaltonetworks.com)

RedHat IPA authentication on Palo Alto

Hi,

When using RedHat or CentOS IPA authentication on Palo Alto firewall, we may ran into challenges when adding LDAP Server Profile and GP Clients functionality related issues.

1. LDAP Server Profile - On a traditional RedHat or CentOS IPA server there

Palo Alto Firewall - Exporting Log Database via FTP/SCP is not working

Hello All,

We are currently doing a POC with Palo Alto firewall in a customer network.

The POC got successfully completed. But while exporting the log database from the appliance we are hitting we issues.

After checking the admin guides, found the lo

Update of Default Trusted Certificate Authorities?

I am just curious - in which way is the list of trusted certificate authorities (WebUI: Device > Certificate Management > Certificates Default Trusted Certificate Authorites) updated? By firmware update or by dynamic update?

Regards,

Sylvia