We're using Cisco Anyconnect version 3.1 and are having issues using the syslog user-id receiver in panos 6.1.3. The default syslog profile for cisco anyconnect 1.0 and the regex entriy doesn't correctly interpet the correct user id dhcp assigned IP
...
Hi there,
I'm wondering if I can use the VM-Series Firewall Bootstrap Workflow for bootstrapping a Panorama VM in AWS.
(https://docs.paloaltonetworks.com/vm-series/10-0/vm-series-deployment/bootstrap-the-vm-series-firewall/vm-series-firewall-bootstra
...
I'm having a terrible time trying to just simply 'clone' a security rule, and then edit it how desired, without running into issues.
First, using copy.deepcopy(security_rule) works perfectly...however adds a massive amount of run-time to my program.
...
Hi Folks,
I am working a IaC project and I ran into an issue coding the TACACS profile creation and creating an authentication profile using the TACACS profile as the server profile.
As you may be aware, the paloaltonetworks.panos galaxy does not have
...
Hi Folks,
I see that "Panos_address_group" can help you to create groups with a list of "static_values"; however, how do you "add/modify" a new IP addresses to an existing group or how do you delete values from the static list?
I did try using "panos
...
Hello,
I have been trying using the command "test security-policy-match" with REST API. I do get a proper response, but i'm missing some valuable information.
From the CLI i get the following response:
admin@KAS-PaloAlto> test security-policy-match from
Hello all.
Does anyone have experience with or can give guidance on integrating Splunk with Panorama to use Dynamic Address Objects in security policy? We are attempting to automate some threat response capability using Splunk and APIs. Searching of
...
Hi Guys!
I noticed, that my zones which are assigned to L3 sub interfaces, are missing from the PanZoneTable (.1.3.6.1.4.1.25461.2.1.2.3.10 ) when walking through the OIDs. Zones assigned to plain L3 interfaces are perfectly fine. Is this intentiona
...
For a month now, we've been trying to convert the XML output from an API call to the Panorama for the "devicegroup" information. We can do that just fine but cannot convert it into a table that can be inserted into a MySQL database. The structure of
...
Hi All,
Any suggestions on how to get Global protect logs for last 24 hours from panorama.
In the Web interface in the systems logs if we put the filter globalprotectportal-config-succ using the Time frame, we get all the previous user detail for glo
...
Hi All,
Any suggestions on how to get all the policies from paloalto with same name using XML api call.
In the Web interface in the search bar if we search using the Tag, we get all the policies containing the tag names. However, in api interfaces not
...
Hi, how can we achieve creating additional fields for logs being processed in "CommonSecurityLog" (https://docs.microsoft.com/en-us/azure/azure-monitor/reference/tables/commonsecuritylog) when sending in logs using the described log connector from Az
...
Hello everyone,,
I'm a hobbyist developer and have created a new tool to display threaded discussions, am testing it on Reddit discussions trees and have an API question. For example, here's a Traverse representation of a recent submission.
My question
...
Hi,
The "load config partial from x-path" is great for copy or moving config but I can't work out how to get it to deal with spaces. e.g. if I want to copy a policy and the policy name has a space in it I can't get the correct syntax.
The XML API Brow
...
Hello all,
I have recently deployed a few Palo Altos to provide IDS across our estate.
Now this has given our Security team added visibility into whats going on.
However, one of the things they want is reassurance that the dynamic content updates are
