Here is my issue, why does Palo seem to have a hard time handling anything more than 30 lines of CLI at a time? Is there a preferred terminal emulator that works best with Palo Alto such as SecureCRT? It's awful, the lines wrap back around onto the
...
Hello Community,
I am working right now with PHP scripting to merge the services (in lower device group) to shared services and replace it service groups and rules by shared service.
For example, I have a service (TCP-443) in lower device group which
...
Hi,
I'm using two PA-850 in HA, Software Version 8.1.21
For our Wifi, we have a Clearpass server sending XML-API commands to our PaloAlto, to do IP/User Mapping, but the mapping doesn't work.
If I try to call the API directly (using https://myfirewall.c
...
Hi,
I'm trying to write Ansible automation to move a specific BGP import/export policy rule. Creating a BGP rule will automatically be added to the bottom of thel ist but as you can see we have default-import-deny rule(test_rule_top is used by the de
...
Hi all!
I need help creating an Ansible playbook that shutdown one of the firewall interface.
I'm trying to do something like this:
[...]
collections:
- paloaltonetworks.panos
tasks:
- name: "Interface down"
panos_op:
provider: '{{ provider }}'
Is there are any plans to implement SNMP IP-MIB for example OID: .1.3.6.1.2.1.4.20
This could help query IP informatin mre efficent.
Hello all,
I am trying to take it slow in regard to automation with the initial task being the identification of address objects that need to removed when a server or workstation is decommissioned. Would like to leverage python and
the pandevice modul
...
Hello,
I'm trying to update or create an aggregate interface or subinterface with a zone_name parameter.
Something like:
---
Hello,
In a previous post in the LiveCommunity forums ( PAN DB vs Advanced ) @SeanDeHarris advised how he manually solved an issue with updating URL Filtering from PAN-DB to Advanced URL filtering usin the article LICENSE ERRORS WHEN MIGRATING FROM
...
Hi,
While I know most would use an issued SSL certificate it would be great if PANOS supported LetsEncrypt for requesting SSL certificates for things like the management interface and GlobalProtect.
What is the proper way to request support for the Palo Alto Networks Ansible collection? There is a bug which makes adding rules to Panorama V10 with connected firewalls on below V10 not work. I submitted a bug on github, but there is no reaction.
I am trying to create a playbook that will go through a devices active policy and for any Allow rule list out the IPS profile defined for that rule. Currently I have not been able to get my playbook to provide the output of the rules so I can filter
...
Hello Palo Alto Community,
I created a few Cacti Templates which allow you to quickly and easily monitor Palo Alto Networks firewalls with SNMP. There are 5 different templates corresponding to the 5 different Firewall families, PA-200, PA-500, PA-20
...
Trying to get some info from the XML API in the form of panxapi.
I'm not sure this even works based on previous forum post by others but this is the closest I could find and it's based on the description having the term Donkey.
xpath="/config/devic
...
