Sudden login issues with Minemeld on Ubuntu 14 and can't login under Ubuntu 16

First post was marked as spam for some reason so here goes try #2 with a more specific title

Never been able to get a solid ansible deploy to CentOS so stuck with Ubuntu 14 manual install but....after staying up way too late last night trying to fi

"uknown" in session end reason?

Have any of you seen "unknown" in the "session end reason" field?

PA-5220 running 8.1.8.

9.0.3 fails to download because 9.0.0 is 'not loaded' (but that's not the case)

Anybody seen this already?

Although 9.0.0 is already downloaded/installed the error is the one you get if you're running a 8.1 release and downloads 9.0.3 without first downloading the 9.0.0 base image.  Same behaviour with 9.0.1 and 9.0.2.  Device is

Panorama Serial

Hi

I have deployed PA-VM-ESX-8.1.2.ova

I have powered on the vm and opened the gui.  I want to input the serial number that I have been given.

- Select PanoramaSetupManagement and edit the General Settings

- Enter the Serial Number and click OK

- Selec

Does 2 spaces cause issue with group mapping

A securit policy is not getting used because ad group i entered is not matching the policy. On checking the cli i cannot list users in the ad group and get invalid syntax error.

show user group name cn=r-emp-it imp adm,ou=role restricted,ou=groups,ou

PBF Rule not being hit

I am experiencing an issue with one of our PAN devices, which is a PA-500 running OS 7.0.19. I have created a new PBF rule to forward traffic from a certain subnet to the inside interface of our edge router. I have several other rules pointing other

Global protect to restrict certain source IP

Can Global protect restrict or only allow certain external public IPs from accessing the VPN? 

GlobalProtect VPN - restrict which devices can VPN?

Is there a way to prevent employees' personal computers (not issued by company) from connecting to VPN? If so is there a license for this and where do you configure the settings? 

Website getting blocked

Hi Team

We have PA 220 firewall with 8.1.5 PAN os version.

We have tried to reach one particular website but its not reachable. When we checked the traffic logs that application was shown as "incomplete" and the end session reason was aged-out.

Note

Palo Alto Firewall Packet Capture on drop state

Hi Team, I have an issue in production for SMTP traffic, when i do packet capture in Firewall for drop state, could see packet are getting dropped in syn packet

Co-related Events Logs Gathering

Hi,

How can we gather the Beacon Detection logs for Co-relation logs in our Syslog Server.

Regrads

Karthikeyan Balamurugan

Display SSL/TLS version in traffic logs (app coloum), instead of just (ssl)?

Hi 

is there a way to display SSL/TLS version in traffic logs (app coloum), instead of just (ssl)? i have worked on another firewall vendors it's too easy to deteremin SSL/TLS version for troubleshooting instead of packet capture for many many custom

How to upgrade a Panorama server from 7.1.x to 8.1.x

Hi,

How to upgrade a Panorama server from 7.1.x to 8.1.x. Also, I heard about the log migration after upgrading to 8.0. So what should be the procedure to follow for this upgrade.