CLI debug pcap verbosity levels

I've been using the cli debug pcap captures for a number of issues recently but was frustrated in the last one by a lack of detail. In this case I was capturing OSPF (debug routing pcap ospf on). When I viewed the capture it looks more like a summary

Miner Data Priorities

Is there a way to have MineMeld prioritize miner data once they get to the output stage? Since some output feeds may be too large for certain firewalls, I want to ensure that our static blacklist is always at the top of the list. Currently new additi

How to configure Syslog to send a CEF in PAN OS 7.1.3

I had found this article for CEF on PAN OS 6.0.0

https://live.paloaltonetworks.com/t5/Configuration-Articles/PAN-OS-6-0-CEF-Configuration-Guide/ta-p/59938

Do the same rules apply for PAN OS 7.1.3? 

I would need to add "CEF:0|Palo Alto Networks|PAN-OS|7

User-ID 8.0 - PKI Setup?

Anybody seen any specific directions on how to setup the new PKI enteprise certs in UA 8.0 beyond the fluffy "whats new" feature section.

Also what is the different between UAinstall and UAcredinstall ... Release Notes are silent.

How to view Panorama related config applied locally on FW

Hi,

When you locally export the config of a firewall managed by panorama, only local config statements are visible.

would be very interesting to know how you see the whole configuration ( the one related to panorama and the one locally related ) direc

Panorama Packet Capture: "File Not Found"

I noticed when trying to open a packet capture in the GUI by clicking the green "down" arrow I get the following error message: "File Not Found". This happens for every capture I try to open with the green arrow in PANORAMA. 

The packet capture opens

URL Filtering - Allow access to sites or categories by AD Group

I am a complete newby here. We are migrating from Websense to PA URL Filtering. I would like to duplicate policies so I can allow certain people access to specific web sites or categories, but continue to block everyone else. This should be seamless,...

Cannot authenticate to the GlobalProtect website to get the client.

Users cannot authenticate to the GlobalProtect website to get the client.  Users that downloaded the client before this issue was reported can authenticate with the client.  I verified this issue with my own login.  I cannot reboot this firewall duri

Monitor threat - URL/FileName

Hi,

in monitor threat I can't view URL/FileName in details.

I want to view the SQL injection with the full URL (comprehensive of the query string).

Is there a way to see it?

Minemeld stuck after reboot

I deployed serveral times Minemeld and everything is running fine. But when I reboot Minemeld I got stuck in the boot procedure. 

First it hangs for 120 seconds:

Cloud-init-nonet[14.62]: waiting 120 seconds for network devices.

after 120 seconds:

St

Global connect client connected but no IP address assigned

I have this odd situation, global connect client successfully establish the connection with portal but in network area there is no IP address on virtual PAN network card. This is only happening with new users. Old users seems to have no problems.

I Ha