Syslog Custom Format for Splunk

I'm trying to get the firewall to send before and after change detail to splunk. I've tried various formats in Custom Log Format, but any changes I make result in no logs being sent to splunk. What is the correct format for Custom Log Format when usi

connection issue about security-client

as doc descibe , Cloud connection should be connected 

admin@paloalto-vm-10.1.9> show ctd-agent status security-client

Security Client Dlp(0)
Current cloud server: dlp.hawkeye.services-edge.paloaltonetworks.com:443
Cloud connection: disconnected
Con

New local users created not working on FW Active but yes working on FW Passive

Hello team

Currently, I have a pair of FW 1410 Version: 11.0.4-h2, passive active and I have encountered the following problem

When creating new local users, with permissions, superuser I can not access via SSH to them locally but I can do it via GUI

For AD user password reset option

Log forwarding - Filtering and Auto- tag not working

Hi there,

I had setup Log forwarding profile, where I am sending All logs to syslog server. Thats working great.

Then I added one more line where I am filtering threat logs for (severity eq critical) and (zone.src eq internet_zone)

Checking f

Nested Device Logging

Hello, 

We have set up some nested device groups, to allow for easier policy management and, as expected, when viewing traffic in Panorama we see the logs for both device groups in the parent device group and only child device group logs in the chi

Firewall is not forwarding logs to the Syslog server

Hi everyone! 

I am kind of bummed on why my syslog configuration is not taking effect.

I have 2 pairs of firewall, PRD(2 firewalls) and DR(2 firewalls). Both are in HA setup and managed by Panorama. My syslog configuration in DR and PRD are just

Multicast - troubleshooting

Any tips/advice how to test multicast? Should I be able to do a ping from a firewall interface included in the Interface Group to a multicast address as a test?

Also from Runtime Stats on the VR, I do not see anything showing under the Multicast ->

PANOS upgrade plan in excel sheet for a year

Hello Experts, 

 I have been asked to provide a plan to upgrade Palo Alto firewalls within a year and I have almost 430 Palos in the environment. I need help creating a sample plan with timelines and what columns I should use in this plan. If someo

New to the community

Hello all,

I am working as a Security Engineer currently and I am learning and working on Palo Alto Networks.

During exploring, I came across Palo Alto LiveCommunity and I see there is so much technical content here to browse and learn.

I am look

Config Audit Failure

Hello~

Does anyone know this failure message that we use Config Audit for compare configuration?

Thanks!

(PA-3020, v6.1.4)

Failed to create config file!

Webpages are loading very slow

Hi!

Me again, I apologize. I am currently out of troubleshooting tricks.

So here it is. I have configured my Source NAT, outbound-to-internet and default route. All are good. No issue. Traffic is hitting the correct Rule and NAT.

The thing is, th