General Topics

Configure a static 1-to-1 destination NAT policy

Hello Live Community, 

I am a new comer to the firewall game and I am wondering how would I go about setting up static 1-to-1 destination NAT policy on my PA-500 Firewall. I just recently set up the firewall using the documentation below and everythi

certificate is not signed by a trusted certificate authority.

Hello guys, I have a one question about Global Protect. I configured it and all was working properly, but when i updated my global protect to the versin 3.1.5 or new 4 and then when i trying to connect an error occur "Gateway ... : Server certificate

Junk traffic

Is there a good way to verify good traffic from junk traffic.?

APT files for testing.

Hi ,

Where can i find famous APT files for testing ?

New-old VM models

Hi All,

I have been updated with new information on "Colossal event" , but some things remain grayed...

Example, I have VM-100 almost five years in production environment and I see that it got muscles right now. So I have several doubts regarding my

Corporate Credential Submission / Phishing protection in PANOS 8.0

Good Morning,

I'm lucky enough to work with a few early adopters and have PANOS8.0 running in several production locations on VM and 3000 series appliances.

So far, business as usual with the "old" feature set....

I've now setup Credential Protection

How to exporting URL log to CSV with comma inside URL field?

Hello,

I'm exporting the URL log to CSV file (I'm using CLI csp export), but I'm having a issue when I try to import this log in MS Excel because some URL have a comma, that break the columns in a wrong way.

Anybody knows if is there a way to export t

Log Retention

I forward all my device logs to Panorama.  I just noticed that the logs only go back 1 day. How can I enable longer retention?  Is there a setting for that?

PANOS Autotag Workflow

I understand we can now add action to dynamic update source / destination IP to our DAG by log forwarding profile.

Can i create 2 traffic profile, 1 for forwardining to syslog another 1 to update the DAG?

How does it work.

Thanks

On-Site-Spare (OSS) revert License

Dear all,

Pls help me

I transfered license to Spare device for PAN-OS upgrade, now I can not revert the license back to Primary device, is there any suggestion for me in this case?

Is there a Captive Portal type solution for non http/https services?

I am looking for a method to force identify users coming in over the internet trying to connect to an internal resource using MS-RDP.

I originally thought I could use Captive Portal for this but CP documentation indicates its only works with HTTP & H

Ethernet logs on palo alto

My internet link is terminated on ethernet 1/3 of palo alto firewall, how can i can find ethernet logs on firewall to troubleshoot circuit issue and report it to service provider?