Automation/API Discussions

Resolved! Some services dont appear in API Request

I've downloading the different services that I've configured into my firewall but for example service-https doesnt appear in the file but yes in the firewall

The request that I made is the following.

curl -o filename 'https://mifirewall/api/?type=con

...

unauth only on some configuration

I am new to the palo world and this is my first post here 

But I am automating the azure palo vm and facing issues I cannot resolve. I have a set of configs where some will respond back with unauth while others are successful. Even stranger I can up

...

Credential errors API from remote Server

Good morning,

I'm starting to use the API for exporting different reports from a remote server.

1) I've generated the API Key

2) I've checked if it runs in my browers without credentials

https://<myserver>/api/?type=config&action=show&key=mykey=&xpath

...

API for 'show system statistics session' ?

What is API for 'show system statistics session' ? I can't find with 'cli debug on'.

Paramiko with PaloAlto

Hi There,

I am very new to Python scripting and have started to learn through my lab PaloAlto Firewall.

I wrote a basic script to just return me the output of an operational command. This script works on my lab SRX but hangs on the PaloAlto.

The code

...

sending user-id logon/logoffss to firewall via PAN-perl

Hi everyone,

Can anyone advise how the PAN-Perl module can be used in per scripts to send user-id mappiungs directly to the firewall? In reading the module, the PAN-Perl module (PAN::XAPI) seems to include every restull api type, except user-id and s

...

Resolved! XML API config action 'set'

Okay, I still can't figure this guy out. All the other commands work perfectly fine but as soon as I try to 'set' a new rule I get an error saying that it's malformed. I've looked through all of the documentation that I can find but nothing will get

...

Resolved! Delete multiple objects from a custom URL category? (or reset it?)

Hi,

I'm managing a custom URL category via API calls. Domains are added, removed. Works well.

But, in some cases, I'd like to remove multiple domains or, more efficiently, clear the category (remove all entries) with one API call.

Any idea how to achi

...

Resolved! Create Securit policy with API

Okay so below is what I've been attempting to use for the creation of policies automatically though the API; however when I run it I simply get a Success output and the rule never actually completes. Can anybody tell me where this is missformated?

...

Custom Signature Request for Recent Malicious Healthcare Activity (Per FBI)

Hello, we received the following from the FBI. Can you help us create a custom signature? Thanks

Seth

There is a snort signature for this...

alert tcp any any -> any any (content:"|6E|"; depth: 1; content:"|36 36 36 58 36 36 36|"; offset: 3; depth: 7; m

...

test security-policy-match command

Trying to utilize the "test security-policy-match" command to accomplish what I normally accomplish on the Cisco ASA using the packet tracer.

On the firewall
1- I have multiple interfaces configured with multiple zones/VR's

2- I need to test access to

...

Gather Custom Reports by API

Does anyone know if there is a way to export the custom reports with the API? I can get them to run with the "type=report&async=yes&reporttype=custom&reportname=Custom Report Name&key" but that just runs them and spits out a job ID. Is there a way to

...

Resolved! Panorama switch context

On Panorama I can switch context using web interface. Is it possible using API?

Palo Alto firewall automation with Jenkins and pandevice

Posted small article about Palo Alto firewall automation with Jenkins and pandevice here, how to schedule policy installs, save and verify configuration

Gigamon Network Visibility

Hi,

Does anyone

Gigamon Partners with Palo Alto Networks