Anyone know what happens when you have traffic set to deny/drop and you have URL filtering profile

Anyone know what happens when you have traffic set to deny/drop and you have URL filtering profile applied? Does it log the traffic in URL monitor when its blocked?

All Interface link state change event up / down

we are seeing all interfaces on firewall reporting link state change to down after few minutes it comes back up ?

speed , duplex on firewall and connected device is looking fine .

Any suggestion ?

Free visualisation (NOC screenboards) for PANW firewall performance/monitoring using Elastic Stack

I was looking for ways to provide 'at-a-glance' visualisation of PANW firewall health, including traffic, threat, system & config logs. The stock capabilities, including ACC, are decent but somewhat lacking in providing NOC-style dashboards.

Inspired

how to make sure I can use AD distribution lists for security policies?

how can I make sure I can use AD distribution lists for security policies?

I am using windows based user-id agent.

Maximum VPN Tunnels on a PA-820

Hello,

Does anyone know what the maximum VPN tunnels are on the new PA-820 firewalls?  The current doc out there does not include the new 220, 800, 3200, or 5200 series firewalls.

Thanks.

Packet capture on physical interface

I want to take packet capture on the physical interface or the subinterface. Basically I want to check the communication on internal interface.  Can anyone help me out ? 

Error process CSV files published as Microsoft Articles

Hi,

I'm using pluging "ms-article-miner" from Xavier Homs to miner ip Microsoft space.

https://github.com/xhoms/minemeld-msarticle

https://live.paloaltonetworks.com/t5/MineMeld-Discussions/Miner-to-collect-Microsoft-Public-IP-space/td-p/186591

Threat email alert throttling

We're setup to email threat alerts, and are getting an email for every alert generated.

Is there a way to throuttle the emails? Particularly for a single threat that is blocked, we don't need 60 emails/min for all the blocks. It would suffice for the

How to filter O365 API feed?

I would like to filter for indicators with the category "allow" or "optimize" only. How would you define the filter for that? I cannot find that much information regarding filtering using a processor. I hope my steps are correct? 

1. create a new protot

Panorama Task Manager Is loading || unable to see any completed jobs history

Hi Team,

We having Panorama which manages more then 30 devices, The problem I facing is when I check the Task manager on the left bottom it's loading continously and unable see any completed or ongoing processes of all devices even if I wait more the