This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

About Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

Discussions

Start a conversation

Need a little help with a syslog regex

I am trying to get the regex for a syslog feed from my mail server right but am having problems. Here is a sample of the log feed: [01/Mar/2016 10:51:13] HTTP/WebDav: User aweidner@fphorak.com authenticated from IP address 192.168.2.155; Mail/2104 CFNetwork/720.5.7 Darwin/14.5.0 (x86_64)[01/Mar/2016 10:51:14] HTTP/WebDav: User aweidner@fphorak.c...

Restrict the user agent on Palo Alto firewall

Hi All We have a requirement to restrict the user agent through palo alto firewall.For example allow web-browsing only from internet explorer 10 and not from any other version of IE or from any other browser like firefox or google chrome.Kindly advise this is possible and howRegardsAnvar

Golang package to interact with PANOS and Panorama

Hello all! I've been working on an API using Go (which is my favorite language) to interact with PA devices. I'd love some feedback, and any suggestions if you might have them. I usually always get the "why Go and not Python" question, so in case that comes up, I just prefer Go. I used to write a lot in Python, but really don't anymore. "go-...

XML API 7.0 Panorama commit-all solution

Here is a curl example of how to push a shared-policy to a device group in Panorama. The example in the XML API Reference Guide 7.0 documentation has an url encoding issue due to the space in "entry name" Another, not so clean approach, is put %20 in the space "entry%20name" if using the example from the documentation Push configuration to f...

miclark1 by L1 Bithead
  • 3003 Views
  • 0 replies
  • 1 Likes

How to delete a firewall user name from the security rule set using the XML API ???

I need help with the XMP API to delete a firewall user from a security rule set.I'm getting an XPath error code = 3 (internal API error) from the following scenario When I do a config command with action = show, I get a XML structure like this:<response status="success"><result><security><rules> <entry name="My-Big-...

Resolved! Cannot update a custom URL category via the XML/API

Hi, I'm trying to populate an existing custom URL category... My query is the following: https://x.x.x.x/api/?type=config&key=xxxx&action=set&xpath=/config/devices/entry/vsys/entry[@name="vsys1"]/profiles/custom-url-category/entry[@name="my_malicious_urls"]&element=<static><member>http://www.google.com</member...

XavierMe by L1 Bithead
  • 10751 Views
  • 3 replies
  • 0 Likes

Powershell to Update Custom URL Category

Wanted to contribute back with some powershell I put together to update a custom url category on a firewall. I used several posts here, as well as some code from a Nessus Powershell script and the pan-python project as a basis for this script. Also on GitHub: wesallen/PaloAlto-Powershell · GitHub# Carlos Perez provided this bit of code to help...

WesAllen by L0 Member
  • 3540 Views
  • 1 replies
  • 2 Likes

H.323 Cisco Spam Calls blocking

Hi, I am trying find out if anyone has successfully (without the creation of a blacklist) blocked these spam calls. I opened a support ticket with Palo Alto and they suggested that I reach out to this board for help. We are constantly getting our conference systems coming off sleep mode to respond to the calls. There are few articles floading ar...

mkhavari by L0 Member
  • 2647 Views
  • 1 replies
  • 0 Likes

Resolved! API Feature request or how to do this?

Hello, I am working on an automation solution where-by I need to add interfaces or sub-interfaces for tenants. Now the problem I have run into is in cases where an interface has been used previously and either not reset back to default config properly or at all. In these cases when I try to commit configuration I run into issues with int...

Skip Value to Large Error from XML API

I am retrieving URL log entries via the XML API. I can successfully get logs when I skip none, but when I try to skip a larger number (for example, 5000), the firewall replies with error 17 "skip value too large".<response status="error" code="17"><msg><line>skip value too large</line></msg></response>There is...

edavis33 by L1 Bithead
  • 3074 Views
  • 0 replies
  • 0 Likes

Retrieving Allowed Categories

When getting the details of a URL filtering object, I have noticed that the allowed categories are left empty in the XML (barring any custom URL categories). Is there anyway in the API to retrieve them?I came up with a work-around of getting the list of all the categories from a "Deny All" rule I made, letting me filter out all the blocked/conti...

edavis33 by L1 Bithead
  • 2280 Views
  • 0 replies
  • 0 Likes

Shared Policy push fails using XML API in PAN-OS 7.0

I am trying to push a shared policy to a device group using XML-API but it fails with the following error: The Panorama is on PAN-OS-7.0.1. This issue does not exist when I am on PAN-OS-6.1.x <response status="error" code="17"> -<msg> -<line> commit-all -> shared-policy -> device-group has unexpected t...

bseal by L2 Linker
  • 2096 Views
  • 0 replies
  • 0 Likes

Need help connecting to the API for loading partial config

I am trying to load a partial config from a pa5060 to a pa500. It's been so long, I have forgotten how to connect to the API -- I've only done it once. And, then I want to figure out the commands that I need to use when I load partial config on my 500, so that I only get objects and policies, etc.

vickif by L1 Bithead
  • 2995 Views
  • 1 replies
  • 0 Likes

Custom signature for a website based off of Referer

I need to build a custom signature attached to an application that will identify a traffic pattern based off of source URL contains g.doubleclick.net and where pattern match equals Referer:http://www.savingforcollege.com. Then this needs to be assigned to a rule to then be allowed.

  • 1031 Posts
  • 68 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks