PA-5220 high SWAP memory usage

Hi,

We have from time to time higher SWAP memory usage on 5520 box. 

Not sure if this would be critical or if I can just higher the treshold values in monitoring system.

On reference box the swap memory is 3%, but on this one 85%.

Reference PA-5520
---

Clientless VPN (Web) and SSO credentials

Dear Palo Alto Experts,

We have set-up a Clientless VPN webpage for certain users so that they can connect to an internal website from outside the company. 

When they logon to the VPN portal, with their Windows Credentials (Radius authenticaton), the

Using custom URL categories

Hi guys,

We're trying to stop users from accessing webpages featuring 'momo' content.

We've set up the below custom URL category and it only blocks Google searches for momo while in incognito mode, and still allows Google image and Youtube results. 

Block websites when using VPN

Some users started to use SoftEther VPN client on our company which allows them to bypass URL Filtering policy. How can we allow them to use VPN client but still allow or block access to certain websites. We already implemented SSL decryption rule bu

Palo Alto and Panorama integration/availibility question

Hi all,

I have some questions about integration between PA firewall and Panorama.

In my scenario, there's one cluster of PA devices and only one Panorama device.

The firewall policies were imported from the cluster into Panorama (Pre-Rules in the Devic

pre-stage changes in Panorama

Is there a good way to pre-stage changes using Panorama? Sometimes I have needs to make a rather complex set of changes in various areas, but I don't want to commit them to the firewall for days or even weeks. Is there a good way to handle this? I kn

Fail Over using Path Monitoring & NAT configuration

I have a firewall wth 2 broadband circuits connected to it, one primary & one secondary.  My goal is to PAT all outbound traffic usinging the primary interface's public address but in a fail over situation I want to PAT all outbound traffic using the

New throughput measurements values with 64KB HTTP/appmix transactions

Hi all ,

As all you know, the throughput measurements definition changed with 9.0 version. But there are two values forexample PA-5220 firewall throughput value is seen as  17/20 Gbs . So why we are using two values here? What does HTTP/appmix transa

Traffic vs Threat Logs

I am searching for the reasons behind the relatively large disparity between traffic logs and threat logs for specified traffic searches in splunk. Redirected sessions cant be a contributed factor when the firewall is set to "log container page only"

Log "Number of hints on disk has exceeded 5000 due to log forward failures."

Hi,

We are receiving these logs. We would like to know what is causing these logs and how to solve it.

Thanks 

PAN-OS 8.0 MineMeld EDL Error: Downloaded file is not a text file

Minemeld EDL feed is failing with error in PAN-OS 8.0. Error: "Downloaded file is not a text file Using old copy for refresj." What am I missing here ?

Captive Portal

Dear Friends !

Good Morning,

there is 2 questions regarding Palo alto

1. how to reset user session by GUI when he is login to PAN vial Captive Portal for internet Access ?

2. how to ping, traceroute and other testings via PAN GUI Mode ?

How to secure PA to Panorama communication channel

Hey, 

can some one put some light on the authentication & authorization of the PA to Panoram ommunication channel?

from what i know is that on panorama side we must have the SN for initial communication.

what happens from the point that the PA first c