Automate traffic log export to csv

Hi all,

I need to automate the export to csv for a specific query for traffic log, for example (zone.src eq myzone) and (time_generated in last-calendar-day) and I must have the same fields extracted from the gui, without limit to the rows retrieved.

Thank You for Filling Out the LIVEcommunity Experience Survey!

If you've visited LIVEcommunity anytime recently, you've probably seen a pop-up asking for your feedback. We've deployed this survey since April 2020 for new and returning visitors alike as a way to gather feedback from our users. 

In the past six

Global Protect users unable to access internal resources

I have a new portal and gateway and I'm trying to get users to access internal resources.  I can see connections in the monitoring logs and get session end reason of either aged-out or n/a.  Internal resources are able to reach GP users so the traffi

log forwarding

Team,

Have few questions on log forwarding ..

1. Is there any best option to check what are the policy rules doesn't configured with log forwarding from Panoroma or any other tools ?

2.How to enforce users to specific custom  log forwarding profile 

Migrating config from fortigate to paloalto ,having interfac mapping issue and also in service no ICMP and PING available

Initial GlobalProtect connection and subsequent drop-outs.

It routinely takes me over 10 minutes to login to my VPN every morning, because the network response is so slow and droppy.  There's so much already loading when I login that I receive "cannot connect" errors from other apps before GlobalProtect even

Rule creation query

Hi Team,

We have created policy

Source: Internal subnet

Destination: Any Application:Any service/url category:custom category.

Action allow.

In custom URl category, we have added 2 domains. Our requirement is internal subnet user should access these 2

Validation failed when committing a changes to managed firewalls from Panorama

Last week we made a changes(added new IP addresses as a Source) to the existing security policy and tried verifying by validating template/device group for target firewalls however it results in validation failed with following errors.

user-id-agent

Globalprotect dissonnection issues

I have a couple of users who say that when on the GP VPN client it disconnects them multiple times and I have not been able to reproduce their issues.

The only thing I have found so far is this in the system logs "globalprotect gateway user login fail

Forwarding logs to MS Sentinel

Hi Guys,

How to send Data Filtering Logs to our Microsoft Sentinel as there is no option in Log Settings for Data Filtering?

Many thanks in advance.

Palo alto certificate error?

hi all,

I am using PA-850 and configure certificate decryption. I am having the problem with this. when I configured to decrypt for any source, client would get the error "ERR_SSL_VERSION_OR_CIPHER_MISMATCH", and could not access to any websites. 

Bu

Firewall stopped sending traffic to internet from trust zone, after upgrade from 10.1.3 to 10.1.5h2

I have upgraded 3 set of palo alto PA-3220 (3 pairs) to 10.1.5h2.

Two set works good without any issue.

When upgrade completed with last set, the active firewall stopped sending traffic from trust zone to internet, though it has all valid routes in it.

User to IP mapping for LAN with computer on hybernet/sleep

I have Palo Alto firewall and implemented the user ID in our environment. I am looking for some help on specific use case. I am hoping to get some answers/guidance for the same.

Firewalls : PA-820/850 as well VM-300

PAN OS : 9.1.13-h3/9.1.9

I have ins

Some users have pre-populated usernames in global protect VPN client

Hi all,

I was wondering if anyone else has seen this.  There are about 3 users that I know of that are having user credentials pre-populated in global protect that are incorrect for the VPN login.  We can't seem to clear this, and even if we do a res