how can I generate url logs for an allow rule with url category selected but not url filtering prof?

how can I generate url logs for an allow rule with url category selected but not url filtering prof?

Firewall receiving a HTTP 401 error when trying to access the Minemeld server

Hi All, 

I've configured an external dynamic access list with the relevant account username/password to reach our minemeld server. When I test the connection however using 'test source url' in the external dynamic list configuration, this fails wit

6.1.3 update issue: Threat database handler failed

Hey all-

I tried updating a test box to 6.1.3 and encountered the error in the title. Per other threads, I tried manually downloading the latest content version and installing but it resulted in an error during install.

Has anyone else encountered thi

Panorama pushed zone not applied to subinterface

Its a new firewall, with 2 interfaces in AE, zone configured and pushed through panorama template.

When configuring L3 sub-interface for this AE interface, i can configure ip, vr but the security zone would not get applied to it.

Both firewall and pano

Mac taking very long time connecting to global protect gateway and sometime they gets dropped

Mac taking very long time connecting to global protect gateway. We are using the clinet version 4.1.11-9.
Pre-log on always on VPN.  It tries and tries until it connects. Sometimes it drops the VPN and tries to reconnect. All I see suspicious  from th

show objects registered-ip all

What does the below mean:

received from user-id agent  #: persistent

I'm finding that some addresses are registered to a tag that I don't believe I've created, - a "Palo-URL-and not entirely sure where it came from.... however I'm reading that a rest

Group mapping settings not listing AD groups in GUI

Hi, 

I am trying to configure user-id based authentication in Palo Alto 5220 (Pan OS 9.0.2). I have integrated Palo Alto with AD using LDAP profile. I am not able to add the AD groups in the "Group Include" list as they are not being listed in the GU

3rd Party device connectivity with PAN 10G transceivers.

Has anyone used the PAN-SFP-PLUS-CU-5M twinax cables and connected them to Cisco Nexus 5500 series switches?  If so did everything just work?

Monitoring Palo Firewalls using System Center Operations Manager

Hey Guys, before I get boo'ed and suggestion of more featured products to monitor palo devices (pano, something or rather dominated googles results) but...our main objective with monitoring our environment, is single pane for monitoring/alerting etc,

Best Practise for Scheduling Dynamic Updates

We want to schedule dyanmic updates , we dont have test environment.

we can schedule updates on satellite offices then after 2 days to be installed on hub sites.

prb is if new application traffic hits it will be denied by hub as that application woul

Import existing config into Panorama woes

We have a handful of standalone PAs that we want to import into Panorama.   However in our first interation it failed with the following errors and I am not sure why.  The entire process isn't made clear to me either via PA (like a lot of their stuff