BGP filter route only for /32 prefix

Hi Experts,

My question is, my Cisco switches advertise host routes to FW from many VLANs/VRFs together with other network routes, we want the firewall Not to accept the any routes with subnet mask /32 but accept anything else, can you help to see if

Agentless User-ID agent permissions

We are attempting to use the agentless User-ID setup with the understanding that the service account needed to be a member of the following AD groups: Distributed COM Users, Event Log Readers, and Server Operators. However, after reading the followin

Dynamic Address Group with Azure monitoring

https://docs.paloaltonetworks.com/vm-series/9-1/vm-series-deployment/set-up-the-vm-series-firewall-on-azure/vm-monitoring-on-azure/set-up-vm-monitoring-on-azure.html

In the end article tells to create DAG but how do I add VM's automatically to this g

System log message Clearing snmpd.log due to log overflow

I am wondering why I see the log 'Clearing snmpd.log due to log overflow' on several of my firewalls. Out of the ~20 firewalls I manage 2 or 3 firewalls log this message on occasion. The other firewalls never log this message.

I am trying to understa

SNMP and Netflow

PAN 9.1.8 has SNMP V3 configured base on

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClHOCA0

with Netflow on AE5.30, ae5.50, and ae5.60 of the 5260 base on 

https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/monitor

Content filtering for MAC OSx

I am trying to finalize my content filtering for our PA 820 rollout. I have the user-ID, group mapping and content filtering rules (By group) working just fine for my windows PC's. Where I am stuck is trying to figure it out for all of our MAC OSx us

OSPF stopped gracefully restarted

Hi Team,

We are facing issue with OSPF is not working properly over the firewall as per the configuration part seems fine we checked with the below given document.

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm5ZCAS

All

ACC Tab no Appears

Can you help me to find the ACC tab i can not found it ?

Log redistribution after adding additional log disk.

Recently we added a 2TB log disk to this virtual Panorama running 8.1.19 on VMWare ESXi 6.5

Once adding, the log redistribution process on the local log collector started as has been progressing very slowly. Over the course of 15 hours this job prog

can we forward logs to two different logs collectors from same fiirewall?

We want to store log copy on two collectors for redundancy.

Note : We don't want to go with collector group(with both collectors in same group) config with redundancy, as this config half the space.

Example. Panorama M200 is in HA with above config , w

User is trying to connect with MS-RDP. Log shows TCP 3389 but application is not-applicable

We've got a remote user connecting with GlobalProtect.  He's trying to RDP to a PC on our inside network.  There is a security policy that he should be matching-  traffic matches source and destination zones, user-ID is matching the right group,  HIP

Is there CLI - Enable and Commit Policy

Dear all, 

Since my WebUI is not responding even with a system reboot and management restart by CLI,  SSH works fine, 

Is there a way by CLI to enable and commit Policy?

Any help would be greatful.

Thanks, 

Sean