MineMeld SIEM integration error

Good morning, we are trying to integrate MineMeld with IBM Qradar but we configured the threat intelligence app in Qradar. We configured the taxi URL: https://X.X.X.X/taxii-discovery-service but when we navigate on it we received the error: 405 Metho

o365 api miners not working - 0.9.48 Ubuntu VM

Running Minemeld on Ubuntu VM. I upgraded from 0.9.44 to 0.9.48 to get the o365 api miners.  The API miners fail with "Bad Request" I tried restarting the API but that did not resolve the issue. Can someone advise me on what to do to fix this problem

Regex for Chromebook Username

Hello all!

We have a little hiccup with our chromebook integration. The issue is, when a user logs in, the info is reporting to the PAN as "domain\john_smith". The PAN is setup to read users as "domain\john smith" so it tags the user incorrectly and

Traffic Logs not showing up on Monitoring Tab

Hi All,

Device Type: PA-220

Software Version: 8.0.11-h1

Im having an issue with old traffic logs not showing up on the monitoring tab. I can see live logs but if I want to check the logs for the previous day or previous 2 days then nothing shows up. I

How to Block Google images Breakout ?

We are having issues with students playing google pacman and Atari Breakout on google images .

Has anyone got any suggestions on how to block these ?

Decryption Office365 with Wildfire

Hi Expert ,

Can it be possible to use feature wildfire and decryption office 365  it can be ? or have a limitation? 

Please suggest to me 

Error fetching External Dynamic List (EDL)

Hello,

When trying to fetch an EDL from a web server configured without support for TLSv1 (only support TLSv1.1 or 1.2) the result is "Server error : URL access error".

I don't know if PAN-OS 7.1.18 fetch client for EDL only support TLSv1. Checking c

Asymmetric Routing and TCP syn check (Pulukas Solution)

Hi Everyone,

Asymmetric Routing and TCP syn verification is a common issue and there were many articles on how to resolve that, basically

1 - To change routing itself and make sure there are no asymmetric routing in the network - best from PA point of

Support for inspecting SSL message for kafka connect

We are using Kafka for messaging and have a requirement to inspect the SSL message sent to kafka broker from kafka connect. Kafka using binary tcp protocol with kafka broker listeners on PLAINTEXT://9093  (without SSL)

Can paloalto decrypt and inspec

Does Palo Alto (VM) firewall supported in VirtualBox?

VPN certificate expires

Hey!

My firewall is a PA-3020 with 8.0.7. There is a Global Protect gateway and portal, users can connect via Global Protect.

As portal address in the global protect app, we are using an address that is availabe in public dns.

Additionally, there is a p

What is application db = 0 and app.id c2s node (0, 0) s2s node (0, 0) in session id command

Hello Folks,

I am looking for some more information on session id command outputs. I see a session in free state with 

 application db  = 0 and  app.id  c2s node (0, 0)    s2s node (0, 0) . What does this mean ?

Is this that app-id engine of PAN is not

sync to peer failing

all of a sudden my sync to peer is failing anything I need to look at?