Palo Alto firewall commands

> show session all filter source 10.123.0.5
> show counter global filter delta yes packet-filter yes
> set cli timeout idle never
> debug dataplane packet-diag show filter-marked-session
> debug dataplane packet-diag clear filter-marked-session all
> show session all filter destination 118.xx.xx.xx
> show session id 43122
> show session all filter source 10.123.3.15
> show session all filter source 10.123.3.15 destination-port 5222
> show session all filter source 10.123.3.15 protocol 1
> show session all filter source 10.123.3.15 protocol 17
> show session all filter source 10.123.3.15 destination-port 5222
> show session all filter source 10.123.3.15 destination-port 5222
> show session all filter source 10.123.3.15 destination-port 443 application ssl
> show session all filter source 10.123.3.15 destination-port 443 application ssl nat source
> show running resource-monitor second last 60
> show running resource-monitor minute last 4
> show session all filter destination 40.76.195.115
> show counter global filter delta yes
> show counter global filter delta yes packet-filter yes
> debug dataplane packet-diag show filter-marked-session
> show session all filter source
> show session all filter source 192.168.249.142
> show session all filter source 10.123.3.15

Leave a Reply

Your email address will not be published. Required fields are marked *

Scroll to top