Minemeld diminishing numbers when passing from miner to processor.

Hello,

We are trying to integrate Recorded Future IP risk list with our SIEM to do correlation after that.

We have set up correctly the miner, which gives us around 50k indicators.

We then proceed to  pass it to the processor stdlib.aggregatorIPv4Gen

DHCP - DNS Servers

Hi All,

Awhile back I was having an issue using DHCP on our PAN Fws.  In the DHCP options, if I set the primary DNS to an internal DNS server and the secondary to a public DNS server, our clients randomly had issues accessing internal resources. I wo

Configuring XFF logging without a URL Filtering License

1. Create a Custom URL Category with * under ‘sites’ (Objects >> Custom Objects >> URL Category >> Add)

2. Create a URL Filtering Profile & set your Custom Category action to “alert” (Objects >> Security Profiles >> URL Filtering >> Add)

Tick

Allow policy for 2 hours per day

Hi 

It is possible to allow a rule for 2 hours within a possible time window

I would like to allow for exampe youtube for 2 hours per day for our employees .

Could i solve this somehow via API ? 

Regards Markus

Migration tool Installtion

I see lots of posts of how to install and use the migration tool, but can someone please provide steps on how to install it properly.

Palo Alto Agentless User-Ip mapping Not Working

Hi Folks, 

Need urgent help on an issue where " PAN Box Integrated with AD as an LDAP entity for USER-IP Mapping. So when User switches from LAN --> WiFi or WiFi --> LAN different IP Subnet, user-ip mapping don't change instantaneously" because of th

Passive device dataplane interface and management interface

Hi Team,

Can we ping management IP of the passive device from the any one of the dataplane interface on the passive device.

Interfaces on the passive devices are up (showing green) --> passive link state is auto.

We have tried pinging the internet in

IPSec VPN not working before phase 2 negotiation

Hello,

I made an VPN Tunnel between paloalto and fortigate(3 tunnels).

Every config is same between them. 2 of them work well but 1 tunnel has an issue.

About 3 mins before phase 2 negotiation(by lifetime or other reason), traffics can't go through t

Is it ok to set ipsec phase 1 lifetime 24 hours when the peer set it to 86400 secs?

Hello

I made ipsec tunnel between paloalto and fortigate.

I keep have issue about rekeying, so I try to set different lifetime phase 1 and 2.

phase 1 : 28800 -> 86400

phase 2 : 28800 -> 28800

In paloalto I can't set 86400 sec, so I plan to set it 24 hou