How to exporting URL log to CSV with comma inside URL field?

Hello,

I'm exporting the URL log to CSV file (I'm using CLI csp export), but I'm having a issue when I try to import this log in MS Excel because some URL have a comma, that break the columns in a wrong way.

Anybody knows if is there a way to export t

Log Retention

I forward all my device logs to Panorama.  I just noticed that the logs only go back 1 day. How can I enable longer retention?  Is there a setting for that?

PANOS Autotag Workflow

I understand we can now add action to dynamic update source / destination IP to our DAG by log forwarding profile.

Can i create 2 traffic profile, 1 for forwardining to syslog another 1 to update the DAG?

How does it work.

Thanks

On-Site-Spare (OSS) revert License

Dear all,

Pls help me

I transfered license to Spare device for PAN-OS upgrade, now I can not revert the license back to Primary device, is there any suggestion for me in this case?

Is there a Captive Portal type solution for non http/https services?

I am looking for a method to force identify users coming in over the internet trying to connect to an internal resource using MS-RDP.

I originally thought I could use Captive Portal for this but CP documentation indicates its only works with HTTP & H

Ethernet logs on palo alto

My internet link is terminated on ethernet 1/3 of palo alto firewall, how can i can find ethernet logs on firewall to troubleshoot circuit issue and report it to service provider?

DIPP A/A Enviroment Floating IP

Hi Guys,

we´ve an Active/active Cluster enviroment. For the normal Internetconnection we will use Source/Hide NAT (DIPP).

At the moment we will NAT on both firewalls the traffic through the interface IP. This works fine, the failover is

ok only one pak

topology

Hi,

I have the below topology .

Planning to put  PA in vwire mode in betweent the asa and core in active standby.

If r1 fails and asa1 is active and asa2 is standby  ,asa2 will become active .

. Lets say pa1 is active and pa2 is standby .

When asa change

Opened session remains after threat triggered block-ip. WTF!

Hi, I've been testing the block-ip action in spyware DNS signatures. I was an RDP session before the threat triggered the block-ip action. Then, no more connections are allowed (what is OK), but the RDP session remains open.

Is this a normal behaviou

Trail Softawre required

Dear All, i need trail software of PA,for vm.How can i get with full features sothat i can test it in my environment

http proxy -session end reason decoder.

All traffic via firewall works fine except http-proxy. PC makes connectio with http-proxy but the proxy session keeps on dropping. session end reason decoder. Is that normal for http-proxy app.

Geo block -- Allow only one country.

How can I geo block all countries except the one where the firewall is. Looking for easier way rather than select all countries

except one and deny.

pa-500 doesn't resolve host in log

Hi,

I have Pa-500 with firmware 7.1.6

I have created dns registers for laptops, pc and mobile phones (inverse and direct zones).

In Monitor/Logs/Traffic. When I check resolve hostname. It resolves sources only for laptops or pc are in domain.

It does