General Topics

minemeld newbie

I have been asked to spin up minemeld on Linux, but everything I find seems quite dated. The only link I found dates back to 2017 and suggests installing on Ubuntu 14.04. Can anybody nudge me in the right direction?

User's Guide · PaloAltoNetworks/mi

Cortex XDR exceptions.

From the endpoint is there a way to see what exceptions are being applied? I assume I should be able to find that somewhere in the support file that is generated, but I'm not sure where in there to look. Can someone point this out to me?

Getting the SpeedTest.net servers with MineMeld

This is less a question needing an answer and more a "so you don't have to go through my pain" type of post.

I was having a problem with SpeedTest.net where the suggestion of a server for testing was taking over a minute to appear after the rest of t

Can't log in to Web UI

After updating my PA200, logging into the Web UI has the browser showing it's creating 'Creating an administrative session...' then it restarts with a login screen. 

There's only one account, and it's credentials work to log in via the CLI. Thoughts

Best practice for reducing Log ingestion for DNS traffic logs to 3rd party log servers

Hi All,

Need some opinions please..

I have a client who wants to ingest their PAN logs (panorama managed) into Sentinel.
However looking at the log data we will be ingesting around 40-50GB of log traffic per day which from a costing perspective is go

NGFW Credits?

Our VM-300 virtual NGFW appliance license expired, therefore we have no support.  I contacted my reseller (SHI) and was sold 32 credits.  My problem is that I don't know how to activate these credits.  The documentation indicates there should have be

PA-1420 11.0.2-h2 - Monitor - Logs - Traffic - Over 10 minute delay

Trying to look at specific traffic to troubleshoot a connectivity issue and noticed that all Monitor - Logs - Traffic results were 10 minutes or more behind the current time.  2 recently installed PA-1420's in HA.   Previous PA-3220 did not have this

AnyDesk is identified as malware by Cortex XDR

Hi Community, 

Any Desk.exe installed in Endpoint has been identified as malware. What can be done here? 

Registering new PaloAlto firewall using ZTP Mode

Hi Team,

We just now bought a new PaloAlto firewall. Now getting it registered using ZTP mode. The device registration succeeded but then I got an email saying "Palo Alto Networks Support Portal for the account Arrow U.S. has been rejected.".

What

CDL rest api support ?

Hi,

I am new to PANW products. I tried googling to find REST APIs to fetch logs from Cortex Datalake but with no success. Is there a way to fetch logs from Cortex Datalake via script ? (like REST API to fetch vales from Panorama)

Thanks,

The device rebooted because of the ZTP settings.

While aging the firewall for delivery to a customer, the following message occurred and the firewall rebooted.
<The system is shutting down due to System Reboot initiated to start ztp again.> 。
There are no configuration settings.
I simply left the fir

NTLM authentication 10.2 PANOS

Hello team,

We need to know if in PanOS 10.2.x version the NTLM functionality is possible to have it configured. Is possible configure NTLM in version 10.2.x?

If it is not possible to have it configured, we want to know in which official documentat