General Topics

Resolved! Threat Prevention - IPS features

Hi, 

Can we enable IPS features on a particular sub-interface/zone in Palo alto so that it gets applied to all traffic that enters through that particular sub-interface? 

From the little reading which i did, i am seeing it as configuring it in secur

Resolved! Scheduled export of csv system log for Global Protect logins

Have been looking around trying to find this and can't find it.

I have a filter for system logs to filter all the successfull Global Protect logins for the last calendar week.

I have been manually exporting this to a csv but wanted to schedule the pr

Resolved! Aperture working/basic, how aperture policy works

I started with aperture and document mentioned "Aperture compares your user defined aperture policies to the data content and context to calculatre any policy violations"

I understood

Conext = data exposure

Content = Data patterns inside the acutal fil

Resolved! Whitelisting Load-Balanced Sites - Fetch DNS records as JSON

For sites (to be whitelisted) that are behind ever-changing IP ranges (e.g. Amazon load balancer), has anybody used a services like these?   

https://dns.google.com/resolve?name=www.netflix.com 

https://dns-api.org/A/www.netflix.com

Is there an e

Resolved! How to enable API access for Minemeld

I have been working on syncing a manual localDB miner list via this Python script (https://gist.github.com/jtschichold/95f3906566b18b50cf2e3e1a44f1e785)  When I use it, I get 'Unauthorized' when trying to access /status/minemeld.  If I manually authe

Resolved! 'Content update job failed for user Auto update agent

i got this email alert from Firewall .

what can be the reason for this and  which process i can check in Management plane?

Resolved! wlc monility and EoIp traffic

Hello All,

I have WLC and anchor-WLC with PA firewall in between, I have rule allowing EoIP and wlc-mobility APPs with application-default service selected, I don't see on monitor tab any single packet logged, even though I know for sure it is there,

Resolved! running-config to candid-config OR candid-config to running-config

Hello All,

Kindly help understand the concept.

I am preparing for my PCNSE and I was reading through the a manual provided by Palo Alto (EDU-255).

Under Configuration Operations, at one point the document reads that “the running configuration is copi

Resolved! What are you using to implement SNMPv3?

I'm taking on the task of setting up SNMPv3 on a firewall but will be starting from scratch with no tools, programs, scripts, etc. in place so I have a lot of flexibility (and also a lot of work ahead). I won't be doing traps but mostly looking at CP