Shared Policy push fails using XML API in PAN-OS 7.0

I am trying to push a shared policy to a device group using XML-API but it fails with the following error:

The Panorama is on PAN-OS-7.0.1. This issue does not exist when I am on PAN-OS-6.1.x

<response status="error" code="17">

 -<msg>

    -<line

Need help connecting to the API for loading partial config

I am trying to load a partial config from a pa5060 to a pa500.  It's been so long, I have forgotten how to connect to the API -- I've only done it once.  And, then I want to figure out the commands that I need to use when I load partial config on my

Custom signature for a website based off of Referer

I need to build a custom signature attached to an application that will identify a traffic pattern based off of source URL contains g.doubleclick.net and where pattern match equals Referer:http://www.savingforcollege.com. Then this needs to be assign

Can't connect to GlobalProtect

We recently implemented the solution GlobalProtect solution. Connect method is pre-logon. One of the users is unable to connect. Here are the logs.

(T2984) 08/05/15 12:09:24:550 Debug(3468): prelogin to portal result is

(null)

(T2984) 08/05/15 12:09:24

Creating Custom App-ID for an unknown TCP session that is encrypted or doesn't seem to have a pattern.

How do i create a custom App-ID if i can't see any pattern on the captured packets? The pcap data seems to be encrypted. For example, i was trying to create a custom app-id for the game Clash Of Clans and i can't seem to find any pattern at all.

App-ID to trap iodine (DNS tunneling)

Hi All,

I'm trying to create a custom signature to block iodine usage of DNS.

while doing a packet capture on it i spotted a returning set of values in the hex that would allow me to capture this traffic.

but i am not experienced enough to get this into

Custom threat signature to detect/block DNS TXT requests.

I'd like some help creating a custom threat signature that would would detect/block DNS TXT requests similar to threat signature ID:34842 which detects DNS ANY Request.

The goal is to disable DNS Queries regarding TXT resource records from our LAN to

Detecting and blocking SSLv2

Need assistance creating a custom vulnerability signature to detect SSLv2.

Thanks

Enable/Disable security rules via XML API

Hi all,

is it possible to enable / disable an existing security rule via XML API ?

Looking at the documentation (both the XML config guide and the api on the firewall) I found no useful informations on this topic

thank's !

Custom Captive Portal Page

I am creating a custom captive portal page.  As part of my page, I would like to pass the username and password as hidden values so that all a guest user would need to do is to click on the button to accept the terms and authentication to occur with

Regex Pattern for Data Filtering

Hi,

I am trying to build a regex pattern to detect the following file types. Link is below.

The files types end with the extension .v and at the end of the file will always have the words endmodule.

If anyone has had experiance with this it would be gre

Patterns in custom app signature only recognizing half the tcp port traffic

Hello All,

Kind of at my wits end. I could sure use some assistance.

I have created some custom app-ids with signatures with success that recognize 100% of the traffic and other app-ids with signatures that fall short.

The ones that fall short only reco

Regex for custom vulnerability signature - help needed

Hi,

I'm not a regex expert, and I'm struggling to figure something out.

I'm making signature that looks at the "Referer" in the http-requst-header.

I've managed to build an expressions that matched on "Referer: http://cnn.com", that looks like this: ".

keep getting the following error "is invalid. Syntax error at end of input."

Customer implementing the following Regex for Data Patterns and is getting syntax error.

(0[1-9]|1[012])\-(0[1-9]|[12][0-9]|3[01]\-(19|20)\d\d

Need help to get the correct regex pattern.