Resolved! A question from Customer Success Office Hours: Cortex XDR Exclusions and Exceptions
What are the differences between Exclusions and Exceptions and related best practices?
Cortex XDR
This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Cookie Policy. Click Preferences to customize your cookie settings.
Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- Discussions
- Security Operations
- Cortex XDR Discussions
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Palo Alto Networks Approved
Community Expert Verified
About Cortex XDR Discussions
Cortex XDR allows you to rapidly detect and respond to threats across your networks, endpoints, and clouds. It assists SOC analysts by allowing them to view ALL the alerts from all PANW products in one place, telling the full story of what actually happened in seconds and allows seamless response.
Please note: All postings in LIVEcommunity are visible to other users; please keep your network secure by refraining from posting live IP address’s or domain names here. Contact your Customer Success team for network-specific questions.
Discussions
Resolved! Firewall logs to Cortex Data Lake log buffering
Hello,
For firewalls managed with Panorama there's a setting in Panorama "Buffered Log Forwarding from Device" which tells the firewall to buffer it's log in the case of loss of connectivity with Panorama.
Does anyone know if there is an equivale
...Resolved! A question from a Customer Success Office Hours session: Alert Exclusions
How do I filter out excluded=Yes Alerts. I'm getting emails about alerts that are already excluded?
Use Case and Purpose of xdrhealth.exe
Recently i have noticed that there is another folder which has been created under PA Cortex folder as below:
"C:\Program Files\Palo Alto Networks\Cortex XDR Health Helper"
Inside the Folder there is PE which is xdrhealth.exe, what is the purpose of t
...Create a correlation between xdr agent and palo alto url filtering
Hi,
I need to get the correlation between url that are being access and found through url filtering in PA FW and xdr agent that shows me which machine are accessing this url.
In Cortex XDR I can see the the log from PA Firewall, source ip it is our
...New solutions
Latest Comments
- anlynch on: Cortex XDR disabling itself
- anlynch on: IOC Upload automation in Cortex XDR
- rmavrinac on: Cortex XDR agent installation suggestions for a Proxmox host and its LXC containers
- rufat87 on: Searching for multiple hashes on cortex XDR
- bbarmanroy on: Ingesting Syslog to Private/Internal Syslog
- anlynch on: User validity via VPN /RDP.
- anlynch on: Cortex Domain controllers exceptions
- neelrohit on: Modifying Policies and Profiles on XDR
- KErickson1 on: Finding if a URL was visited using XQL in Cortex
- neelrohit on: Rollback feature for agent upgrade
Top Liked Posts
| Subject | Likes |
|---|---|
| 3 Likes | |
| 2 Likes | |
| 2 Likes | |
| 2 Likes | |
| 1 Like |
Labels
-
Best Practice
1 -
Cortex Data Lake
3 -
Cortex XDR
16 -
Cortex XDR Webinars
2 -
Events
1 -
IoT Security
1 -
Isolation
1 -
Management
2 -
PA Firewall
1 -
PAN-Os
1 -
question
7 -
Setup & Administration
2 -
SIEM
1 -
threat prevention
2 -
XDR
2 -
XDR Events
2 -
XDR Webinars
1
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks