https://live.paloaltonetworks.com/t5/general-topics/push-custom-signature-using-api/m-p/269358#M74613 <P>somthing along these lines:&nbsp;</P> <P>&nbsp;</P> <P class="p1"><SPAN class="s1"># set threats vulnerability 41000 direction both severity critical threatname mythreat signature standard mysignature scope session and-condition myandcondition or-condition myorcondition operator pattern-match pattern mYpAtTeRn context http-req-headers qualifier http-method value GET </SPAN></P> Wed, 12 Jun 2019 19:13:41 GMT reaper 2019-06-12T19:13:41Z https://live.paloaltonetworks.com/t5/general-topics/push-custom-signature-using-api/m-p/268365#M74547 <P>Hello colleagues, how I can upload to firewall custom signature using api or cli interface?</P> Mon, 10 Jun 2019 14:13:51 GMT https://live.paloaltonetworks.com/t5/general-topics/push-custom-signature-using-api/m-p/268365#M74547 ColaNet 2019-06-10T14:13:51Z https://live.paloaltonetworks.com/t5/general-topics/push-custom-signature-using-api/m-p/269358#M74613 <P>somthing along these lines:&nbsp;</P> <P>&nbsp;</P> <P class="p1"><SPAN class="s1"># set threats vulnerability 41000 direction both severity critical threatname mythreat signature standard mysignature scope session and-condition myandcondition or-condition myorcondition operator pattern-match pattern mYpAtTeRn context http-req-headers qualifier http-method value GET </SPAN></P> Wed, 12 Jun 2019 19:13:41 GMT https://live.paloaltonetworks.com/t5/general-topics/push-custom-signature-using-api/m-p/269358#M74613 reaper 2019-06-12T19:13:41Z https://live.paloaltonetworks.com/t5/general-topics/push-custom-signature-using-api/m-p/269505#M74629 <P>Thanks for the answer, can you give examples or a detailed description of the addition of a specific signature? And why such a limit of 4000 signatures? In this case, the question is brewing - does the firewall or VF-500 store any signatures or hashes of secure files somewhere, will they not go to the scan each time?</P> Thu, 13 Jun 2019 07:27:55 GMT https://live.paloaltonetworks.com/t5/general-topics/push-custom-signature-using-api/m-p/269505#M74629 ColaNet 2019-06-13T07:27:55Z https://live.paloaltonetworks.com/t5/general-topics/push-custom-signature-using-api/m-p/269550#M74633 I don't think i fully understand your question No hashes are saved, except for wildfire uploads Thu, 13 Jun 2019 11:40:46 GMT https://live.paloaltonetworks.com/t5/general-topics/push-custom-signature-using-api/m-p/269550#M74633 reaper 2019-06-13T11:40:46Z https://live.paloaltonetworks.com/t5/general-topics/push-custom-signature-using-api/m-p/269551#M74634 <P>Please see this link <A href="https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClUdCAK" target="_blank">https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClUdCAK</A> you can see here that you can add signatures using the web interface, I’m interested in automating the addition of such rules, because doing it every time with your hands is a long and difficult task. Best of course if you can automate using API.</P> Thu, 13 Jun 2019 11:47:49 GMT https://live.paloaltonetworks.com/t5/general-topics/push-custom-signature-using-api/m-p/269551#M74634 ColaNet 2019-06-13T11:47:49Z