General Topics

Routing traffic from branch through HQ to vendor

Currently Im labing a situtation where I'll need to have branch users route to a vendor through HQ via IPsec tunnels. Users at my banch access can acesss Web/HQ services though the HQ firewall, but when accessing the vendor. Logs show from HQ the at

schedule export configuration file via email by automatically daily

HI

I have a device pa 220 firewall but without panorama 

I have a query 

I need to schedule to get the configuration file on a daily basis for my email is it possible?

About monitoring Memory statistics for DP

Hi all,

How can I monitor memory statistics on dataplane from the CLI (not SNMP)  ??

Regards,

HA

Monitoring VPN tunnel status

Hi,

I would like to monitor VPN is UP using NAGIOS. I think its necessary configure tunnel monitor for this, right??? what are the options to monitor VPN is UP? and monitor config profile.

Log s for Firewall generated Traffic

Hello All - I am not seeing logs in the monitor section, when i generte traffic from Paloalto Firewall itself. For example,  when I ping 4.2.2.2 from the Firewall, i am not seeing logs showing for.

Is it a known behavior? or i missing something? is t

How PA 5220 appliance sends netflow packet when configured in HA and Vsys Mode.

How PA 5220 appliance sends NetFlow packet when configured in HA and Vsys Mode. does the firewall find egress interface by looking into routing table for Netflow packets? If it is Yes, So why we need to change service route on PA 5220 appliance,

Seco

Link Aggregation - IP addressing

So I configured Link Aggregation on my PA5260 running 8.1.

The first pair of links in ae1.8 comes up perfectly using 192.168.255.3/25 as the IP address. The second pair of links in ae2.9, however, refuse to respond on 192.168.255.131/25. The second p

PaloAlo ports not coming up!

Hi,

I am configuring some new PA850s and interfaces are set to Vwire mode. ports are connected to cisco switch but they are not coming up.

they come up and go down. here are settings from cisco side:

speed 1000
duplex full
no mdix auto

paloalto ports:

sp

Importing Logdb into different devices

I'm trying to import logdb coming from a PA-2050 to a smaller devices like VM-100, PA-200 or PA-500 but without any luck. Has anyone successfully tried this operation?

The command scp import logdb from ... seems ok but in the end no data is shown unde

MineMeld can not get O365 JSON format list

[Failure event]
In the case of O365 's xml format, when MineMeld received traffic after ClientHello, I got a list but if I set config for JSON support I can not get a list.

[Prerequisites]
MineMeld will go through Paloalto and do Internet communication

Statics for DoS Protection

Since DoS protection is for more granular protection of a server, how can i see the statics for the particular server i want to protect.  Wouldn't we need to know the pps statics and sessions for that particular server.