This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

About Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

Discussions

Start a conversation

Controlling Google's Hangout app

Has anyone here dealt with Googles hangout app for mobile devices going through the firewall. The customer wants to allow hangout chat but not file-transfer or video calling. The apps sees it as google-talk and under it is gtalk-voice, google-talk-base and gtalk-file-transfer. If we set up the policy for app filtering would the gtalk-file-transf...

dkillpack by L3 Networker
  • 7233 Views
  • 2 replies
  • 0 Likes

About Custom Vulnerability Signature

Hello,My customer made vulnerability signature in FW. But FW doesn't detect this signature.Customer Vulnerability Signaturecontext : http-req-message-bodypattern : eval\(gzinflate\(str_rot13\(base64_decodeI am searching this but I don't know.So I need your assistance for it.I have read Creating_Custom_Signatures-RevA.pdf document This document...

Get logical interface active bitrate

Hi,How can I get the current bitrate of a logical interface at the time its queried via the API or CLI?I've tried 'show interface tunnel.x' but that shows be the overall counters for that interface.I know it can be done as Pan(w)achrome displays that information. When I click on the birate speed in Pan(w)achrome it shows me 'tunnel.x.ibytes.rat...

eugenep by L3 Networker
  • 2883 Views
  • 2 replies
  • 0 Likes

Script for pulling configuration

Hi, can someone help me with creating a non interactive script which logs in to the device and pulls configuration.I tried this, but it hangs after passing the password.ssh <username>@<firewall_name> "show config running"It runs fine when doing it interactively on putty.

Custom App-ID SMB Signature Assistance

Hello,I'm trying to write a custom smb signature to restrict access to certain shares. It's based on Custom App-ID for a specific SMB shareMy share pattern is '\\america\credit'. Unfortunately, it didn't work for me and I opened a support case. But they asked me to post the sig. here to verify it first before they look at this further. Can some ...

Is it possible to have 4 devices as active/active setup?

Am I able to configure up to 4 devices to act as active/active in high availability?This should be able to, if one of those 4 get down, the others 3 keep handling traffic. And if another one of those get down, the other 2 keep running and so on.Is it possible? If it is not, is there any roadmap for so?

PAN script to deply multi-VSYS

Hello,I was recently in a webinar (Sales Insights: MSSP Program – Approach, Process, Variations), and David mentioned a "Pro-Scripts" or PanScripts that are capable to create templates and deploy to multi-Vsys from Panorama.I would like to find out more information about these scripts and where could I download them.Any help is appreciated,Thank...

clopesda by Not applicable
  • 2469 Views
  • 0 replies
  • 1 Likes

Custom App Signature to detect Firefox User Agent - not working on *some* https traffic

Hi,recently I have been 'forced' through a support call to look into custom application signatures for the first time.The requirement is to detect and block the Firefox UserAgent string (the usefulness of blocking something as easily spoofed like this at gateway level is not part of the problem )The patterns were identified by the customer alr...

Questions on modifying the captive portal design and function

Hello, One of the customers has put forth couple of questions regarding the capability of modifying the captive portal design and function. Any feedback is appreciated. Customer has already managed to change the style of the portal to a certain degree, including linking to images for display on it and changes in color/font. Currently they have...

tshiv by L4 Transporter
  • 6575 Views
  • 2 replies
  • 1 Likes

dynamic address object show via XML-API

Hi All,We're doing some custom apps which revolve around dynamic address objects. We'd like to be able to dump out the current members of a dynamic address via the API. The 'Dynamic Address Objects revB.pdf' document doesn't mention that it's possible via the XML-API, but it doesn't say it's not either...and indeed, the API does offer this fun...

suppa by L0 Member
  • 2982 Views
  • 1 replies
  • 0 Likes

USER ID PROBLEMS

Background:Utilizing the PAN perl modules version: PAN-perl-20121110How it works: A php web page calls a perl script to update a user's ip mapping in the firewall.Example command:code snippet:my $cmd = "<uid-message><version>1.0</version><type>update</type><payload><login><entry name=\"$id\" ip=\"$ip\...

CarlF by L0 Member
  • 1799 Views
  • 0 replies
  • 0 Likes

Multiple DHCP Servers on one interface?

Hi everyone,The proposed network layout is the following:We have three seperate networks connected via a layer three device to a Palo Alto Box (the black Server in the picture). Can the Palo Alto be a DHCP server for the three seperate networks, if it is only connected to the downstream networks via the transfer network? In other words, can a DH...

Global Protect Satellite reconnect via API

Running PANOS 6.0.2I'm trying to use the XML API to reconnect a Global Protect Satellite to the gateway but getting:<response status="error" code="400"><result><msg>Unsupported command.</msg></result></response>My API call is:https://192.168.19.10/api/?type=op&cmd=<test><global-protect-satellite&g...

erikj by Not applicable
  • 2003 Views
  • 0 replies
  • 0 Likes
  • 1031 Posts
  • 68 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks