Paltalto firewall Monitor allowed/denied traffic

From Notes_Wiki
Revision as of 06:10, 8 September 2023 by Saurabh (talk | contribs) (Created page with "Home > Enterprise security devices or applications > Paloalto firewall > Paloalto troubleshooting options > Paltalto firewall Monitor allowed/denied traffic Go to Monitor -> Logs -> Traffic. Here we filter for source/destination. Here unlike session monitoring we can see historic (Based on log storage capacity of firewall) sessions and whether they were allowed or denied. Example filter ( addr.dst in 192.168.0.0/24 ) Same as monitor ->...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Home > Enterprise security devices or applications > Paloalto firewall > Paloalto troubleshooting options > Paltalto firewall Monitor allowed/denied traffic

Go to Monitor -> Logs -> Traffic. Here we filter for source/destination. Here unlike session monitoring we can see historic (Based on log storage capacity of firewall) sessions and whether they were allowed or denied. Example filter

( addr.dst in 192.168.0.0/24 )

Same as monitor -> Session Browser, here also we can click on values listed to create addtional filters based on those values.


Home > Enterprise security devices or applications > Paloalto firewall > Paloalto troubleshooting options > Paltalto firewall Monitor allowed/denied traffic

Retrieved from "http://www.sbarjatiya.com/notes_wiki/index.php?title=Paltalto_firewall_Monitor_allowed/denied_traffic&oldid=8033"