Hello all,
Do you know if it is possible to check certificate expiration date from API or CLI for Firewall and Panorama.
Ideally also get all the certificate details. I haven't found a way.
Thanks
Today, we are doing every change manually through Panorama and pushing out to Firewalls. We currently only have 2 sets of Physical HA Pairs. At the end of the day the approved changes are manually entered and submitted. For example, say we had to
...
set audit-comment comment "paul manual edit" xpath
I've been working with the Palo app/addons for Splunk. There is the capability to pull a PCAP directly from a firewall (not Panorama) this way. It seems to fail intermittently on several of our firewalls. The errors are either "URLError: reason: [Err
...
Hello,
I am trying to update the login-banner. I have tried this:
When receiving an error from the Panorama REST API, the platform is responding with what appears to be an invalid XML document. Here is the data in question:
<response><code>16</code><message>Invalid Credential</message><details><entry @type="CauseInf
Hi all,
I am trying to enable/disable an IPSec via the API but cannot produce a command that works.
I am currently trying this command to disable the tunnel
curl -X GET "<firewall-fqdn>//api/?&type=config&action=set&xpath=/config/devices/entry[@name="
...
Settings
Scenario: While reading the 10.1 Guide and XML API guide, I see:
Forgive me for this question as automation is an on-going learning thing for me.
I'm trying to determine the best way to automate the process of changing the password for a local account on my firewalls en masse rather than logging into each one indi
...
I have a script which is doing report on multple Panorama securirty policies. It is working ok using the API, but I need run it offline using the panorama config file.
My understanding is that I should be able to do it using the refresh_from_xml() mo
...
Hi,
I'm using two PA-850 in HA, Software Version 8.1.21
For our Wifi, we have a Clearpass server sending XML-API commands to our PaloAlto, to do IP/User Mapping, but the mapping doesn't work.
If I try to call the API directly (using https://myfirewall.c
...
Hi,
I'm trying to write Ansible automation to move a specific BGP import/export policy rule. Creating a BGP rule will automatically be added to the bottom of thel ist but as you can see we have default-import-deny rule(test_rule_top is used by the de
...
Hi all!
I need help creating an Ansible playbook that shutdown one of the firewall interface.
I'm trying to do something like this:
[...]
collections:
- paloaltonetworks.panos
tasks:
- name: "Interface down"
panos_op:
provider: '{{ provider }}'
Is there are any plans to implement SNMP IP-MIB for example OID: .1.3.6.1.2.1.4.20
This could help query IP informatin mre efficent.
