question for block amazonaws

Hi I recently got many amazonaws.com IPs listed in my attacker list from my daily report as below. How do I block all traffic from amazonaws, and I cannot find it from my traffic monitor and why? Please give me some hints?

52.5.42.249 ec2-52-5-42-2

How to generate SNMP Trap for testing purposes on PAN OS?

Hello

I'm on PAN OS 6.1.8 and I try to test my reporting/alerting system.

Is it a way to generate trap from PAN os from CLI/GUI?

P.S. This doc https://live.paloaltonetworks.com/t5/Configuration-Articles/SNMP-Trap-for-Port-or-Link-status/ta-p/56

sslvpn: exited x times waiting y seconds to retry

Hi,

Getting following error:

sslvpn: exited x times waiting y seconds to retry

l3svc: exited x times waiting y seconds to retry

Anyone having same messages? Hardware is 2050 with 6.1.7 running.

Regards,

Kevin

python-script How to add source address to gpolicy (XML API)

Hello,

i would like to add source address and destination address in a policy using XML API. below syntax is right?

/api/?type=config&action=set&key=key_value&xpath=/config/devices/entry/vsys/entry/rulebase/security/rules/entry[@name='test']&element=

RADIUS authentication and multi-vsys configuration

Hello,

i have a pair of 5020, with multi-vsys environment and i want to be able to separate admin access based on vsys and read-only/read write access. I successfully configured following admin access scenario, using external RADIUS server:

separate

What is the "Allow" action in Data Filtering log for Wildfire?

Hello,

I understand what forward, upload, and upload skip mean in the Data Filtering logs for wildfire. But some files I see the Action listed as "Allow".  What does this mean exactly? I've been searching for an hour and can't find any reference to

way to do site-to-site with single tunnel and preserve security rules for intra and interzone?

hello all,

I've got to add a new satellite office into our network and I was hoping to do this with a single tunnel. If that were all that was required I'd probably be fine, but it's complicated by the fact that several years ago when our network w

Domain-map showing no result

What can be the possible reason for debug user-id dump domain-map showing no result.

I have a domain with netbios name as test where in the actual domain is test.abc.def.com. I am using user-id agent. I am pulling mapping from the user-id agent as te

Wildfire signature

Hi folks,

After Wildfire detect that file is malicious , how can i block this file or how can i find this malicious file signature ?

filtering monitor logs - wildcards?

When filtering for users in the traffic log, is there any syntax for using wildcards? For example user.src eq 'domain\blah*' ?

User-ID domain-map

Hi guys.

I have a problem with a user-id setup in a large multi domain envoirment. User-ID agentd are working fine, but the user did not match against the group mapping. It looks like we have a problem with the domain map. The command debug user-id