Resolved! New template stacks after upgrade?

Hi all,

I upgraded from an 8.0 release to 8.1.3 to prepare for a migration to some new hardware.  I did a commit after the upgrade to make sure everything was synced up between Panorama and the firewalls and I believe everything went ok.

I was making

Resolved! ssl decrypt exempt - use exclusion list or config no decryption policy

Need to know when we need to exempt website from SSL decrypt what is the best practice 

should we add the url in built in ssl exclusion list?

or should we create SSL decryption policy ?

Resolved! 15 cpu cores in 5220

Hi everyone,

Need to know the cores from 0 to 15 as shown below does it mean that 5220 has 16 dedicated CPU including number zero?

And all these cores are used by the DP only?

show running resource-monitor

Resource monitoring sampling data (per secon

Resolved! Seeing user Data by PCAP and SSL decryption

Need to know can we see or scan user Data if we do PCAP on the SSL decrypted traffic?

Resolved! checking the firewall port via telnet from command prompt of PC

On port based firewalls we can use telnet from command prompt like

telnet 2.3.4.5 22

to check if port 22 is open or not.

what is best way to check from PA?

we have some users who use this old method

Resolved! Finding the large bandwidth user

What feature on the PAN 5060 lets you see which address pairs are consuming the most bandwidth?

Resolved! PA firewall is not forwarding logs to Splunk indexer

Hi Dears, 

I have a issue regarding the log forwarding. 

Paloalto logs are forwarded to splunk SIEM in our environment. We were running panos 8.0.10 and the log forwarding was working as expected. Recently we upgraded to version 8.0.12 which is a TAC

Resolved! How to correctly visualize groups and users in security policy

Hi everyone

I’m working with a Palo Alto 3250 (Pan-OS 8.1.1).

I made integration with LDAP, and configurated group mapping setting.

My problem is when I want add any group or user in a security policy the object appear like cn=Admin,ou=groupadmin,dc=exa...

Resolved! Can't create Nat rule using more than one source address

Hi all,

I'm trying to create Nat rule for source translate when the source is address group and it will not be bi-directional.

The address group include 2 address from objects.

The source translate is Static-IP tried to put object and specifric IP add

Resolved! Autofocus Mindmeld whitelist microsoft

I'm running into an issue where I can pull in indicators from autofocus by creating a minemeld miner, the only problem is that I am getting a lot of windows.com and microsoft.com domains in the list.  I've had the search from autofocus entered as mal