Threat Activity (ACC) and Monitor-LOGS-threats are empty

As the title suggest i have on my fw (pan os 10.0.4) Threat Activity (ACC) and Monitor-LOGS-threats totally empty.
Since few weeks ago no problem and all the other logs work fine.

And no changes have been made.
Any ideas?

already restart mgmt service wit

Query on IKEv2 Phase2 parameters

Hello,

We are thinking of peering Cisco ISR G2 Router with PA-VM (deployed in Azure).

In Cisco, ESP-AES-256 is used for Encryption and ESP-SHA-256 is used for Authentication.

I can see that these two options are not available in PA-VM.

In that case, wha

Is your organization using a DevOps or DevSecOps model?

We could like to know if your organization using a DevOps or DevSecOps model, or are you trying to move to one?

What has your experience been so far? Do you like it? Do you hate it? 

Things we can improve on? 

Please let us know your thoughts.

How to reimport a csr via api

Anyone ever tried to import a csr back into config?

I generated a csr on panorama the other day and then went to generate a certificate. (I did not commit at this time)

when I came back with the csr response someone had reverted the config so my csr

What does these vaules in dp brdagent logs mean

2021-08-04 03:08:26.800 +0000 PORT4: board_port_autoneg_enabled -> board_port_autoneg, link: 0, mode: 1
2021-08-04 03:08:26.856 +0000 Port 1: DISABLE command received
2021-08-04 03:08:26.856 +0000 PORT1: board_port_autoneg_enabled -> board_port_reset,

Palo Alto 10.0.6 5220 and 'show session all filter min-age'

Hello All,

Just wondering if 'show session all filter min-age 4000000' displays relevant information. We have around 3200 sessions in session table at average, but when I am trying to look for long-lived or even stuck(?) connections number using comm

VPN Site-2-Site both sides with dynamic IP

VPN Site-2-Site both sides with dynamic IP

Good afternoon, first of all, thank you very much for your support and help.

Is it possible to configure the following:

Site 1: Palo Alto with Dynamic output to the Internet.( already have NAT configured on t

Directing SMTP Traffic to VPN Tunnel

Hello Team,

I am new to this kind of issue and need suggestions as I need to execute the same in my Organisation. I would like to know if we can direct the SMTP Traffic (Outlook Mails) to our IPsec VPN Tunnel without disturbing any other application

CIS Control 13.5 - Unauthorized use of encryption

Looking for input on this one. From a Palo Alto perspective, what would be the best way to monitor for encrypted traffic in general? Need a way to make sure we're specifically able to point to traffic that was encrypted and provide a report or show t

HTTP Server Profile > Payload Format

Hi Everyone,

Device > Server Profiles > HTTP
I created a server profile, however, My curl request is not working, Can you kindly provide any information about how can I fill those fields (Headers, Parameter information and Payload)? How can I translat

Windows Remote Assistance

Hello,

I'm fairly new to PAN after years with other  vendors.

We're using Windows Remote Assistance in the network. This requires allowing the ms-rdp application between the network from which we want to assist and the target network. When I try to

I found message from scan secutity on Palo alto 850 "Insecure Transport: Weak SSL Cipher ( 11285 )"

Hi All

I found message from scan secutity on Palo alto 850 "Insecure Transport: Weak SSL Cipher ( 11285 )"

I did configuration command like in document. but the message it still show after scan again.

anyone have idea

for SSL/TLS to disable weak Al

VPN S2S Site with Dynamic IP and site with FQDN ( DynDNS )

VPN S2S Site with Dynamic IP and site with FQDN ( DynDNS )

Good afternoon, is it possible to set up a Site-to-Site VPN between a site with a dynamic Public IP and a site with a DynDNS FQDN.

PaloAlto----IP-Dynamic Public----Internet-VPNIPSEC-----PaloAl