About S_Alad

I dont see traffic logs in mine anywhere   pano_admin@panorama01> show system logdb-quota Quotas: system: 30.00%, 4.171 GB Expiration-period: 0 days config: 25.00%, 3.476 GB Expiration-period: 0 days hip-reports: 1.00%, 0.139 GB Expiration-period: 0 days appstat: 35.00%, 4.867 GB Expiration-period: 0 days Disk usage: system: Logs and Indexes: 4.2GB Current Retention: 119 days config: Logs and Indexes: 657.4MB Current Retention: 475 days appstatdb: Logs and Indexes: 3.9GB Current Retention: 323 days hip-reports: Logs and Indexes: 0 Current Retention: 0 days Slot:0 Quotas: detailed: 60.00%, 282 GB Expiration-period: 0 days summary: 30.00%, 141 GB Expiration-period: 0 days infra_audit: 5.00%, 24 GB Expiration-period: 0 days platform: 0.10%, 0 GB Expiration-period: 0 days external: 0.10%, 0 GB Expiration-period: 0 days Disk usage: detailed: Logs: 10748 MB, Current Retention: 56 days summary: Logs: 2057 MB, Current Retention: 321 days infra_audit: Logs: 5914 MB, Current Retention: 261 days platform: Logs: 0 MB, Current Retention: 0 days external: Logs: 0 MB, Current Retention: 0 days Space reserved for cores: 0MB pano_admin@panorama01>   ... View more

@S_Alad, What transport protocol are you attempting to use? If you're using WMI Microsoft has heavily restricted this through recent updates; you'll want to migrate to WinRM assuming that you're keeping your servers updated. Outside of a permissions issue as mentioned by @vzamy the primary issue that folks run into is when they follow an older guide and attempt to use WMI as the transport method.  ... View more

Thanks for the sharing Alad.  ... View more

1.Palo Alto Networks really relies on Credly to distribute certification badges?: I got PCNSE badge thru credly couple of months ago. 2. Hover on the link in your email, it will reveal the real url behind the link. 3. Copy and paste on google search to see whether someone has a negative review about it. 4. ... ... View more

From Support: I understand you are facing an issue with the ACC Tab not providing any data after upgrading from: 8.1.21 to 8.1.23. This behavior is documented on the known issues release for 8.1.23: https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-release-notes/pan-os-8-1-release-information/known-issues/known-issues-related-to-pan-os-8-1-releases#id1787F0E08SZ_id182FH0700UV # PAN-194455 Engineering is reviewing this for the EOS Platforms, but we do not have any tentative release date or guidance on a fix at this time. ... View more

Check the Preemptive and have the Active have lower priority than the passive FW.  ... View more

Hello, Let me try this: Lets say you want to allow the following applications: ssl, web-browsing, and dns and dont put in any service/ports. The firewall will allow traffic that is sees as DNS only on port 53, web-browsing only on port 80 and ssl only on port 443. If DNS tries to use any other port, it will be blocked. if you put in a policy that allows applications: ssl, web-browsing, and dns and ports 53, 80, 443. Then the firewall will allow any of those applications over any of those ports, ie DNS over 443, 80, 53.   So by not using a specific service/port, you are making your security policy that much stronger. If you want to allow an application say DNS over port 443, you will need to have a special policy that allows that. The firewall reads policies top down, left to right. Once it finds a match, thats what it will use.   Hope that makes sense.  ... View more

You can download GNS3, watch some YouTube tutorials on how to set up PA, and use it as a testing environment. ... View more

Planning upgrade later in the year. Thanks ... View more

Hello, Also check the logs to see which nat policy is being applied to the traffic. It could be the NAT policy to too low on the list. Just like security policies, the NAT checks top down, left to right. Once it matches, it uses it.   Regards, ... View more

It worked like a charm. thanks ... View more