panos_syslog IP indicator - withdraw

I am trying to create an IPv4 indicator list based on PAN-OS threat logs.

Below is the rule code attached to the syslogminer class stdlib.syslogMiner.

RULE:

age_out:
   default: last_seen+30d
   interval: 1800
   sudden_death: false
attributes:
   c

MineMeld real-world usage to reduce threats?

So far I'm using MineMeld to pull Dshield and Spamhaus feeds to use to block inbound connections to our internet facing servers.

Whilst there are loads of miners I'd love to know which ones people have found "safe" enough to use on production inbou

Global Protect Windows 10

Hey experts!

I have a new Windows 10 notebook and Global Protect Client 2.3.4-4 installed.

However, the connect button is greyed out.

I read on the Palo Alto site that the recommended minimum agent version is 3.0.3.

So is the problem my 2.3.4 version? Do

Record all web site activities and youtube activities

Hi,

A friend wants to know if there is ways to record all their kids web activity, down to the URL level.  Also, which youtube video did the children watch as well.

Thanks,

E

Filter Certain Search Strings using URL Filtering stopped working

We set up a custom URL category proxy-search following the instruction here https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Filter-Certain-Search-Strings-using-URL-Filtering/ta-p/52441

This worked fine but recently it has stopped wo

Create a miner to mine from Autofocus MineMeld

Hi, with the release of PANOS 8.0, Autofocus will have a minemeld build in.

May I know if we can have a on premise minemeld to fetch the feeds from the Autofocus Minemeld?

I tried to grab the minemeld feeds but it shows me unauthorized access.

NEW PA 800 Series user experience

Hi all,

Does anybody have experience with new PA series ?

Commit time ? Memory on the MGMT plane ? CPU (core, etc) , SSL ASIC ?

Regards,

HA 

Panorama - Logging and Reporting Settings

I'm rather confused by the quota settings. I've had my Panorama for about 3 years and was asked to produce a report today and with 500GB of storage I relealized that my history was only about 5 days to produce a user activity report. I would have swo

URL marled as category "ANY"

Hello,

My customer has a PA-500 with URL filtering, since we have attach an url profile to security rules all websites are blocked  with category "ANY".

Furthmore, no logs in "url filtering".

Someone has already face this issue ?

Thanks for your help.

5 Internet link (Public IP Address) installing to Palo Alto PA 220

Hi All, I plan to install PA 220 to my network. I have 5 Internet links that will connect to PA 220. Does it have any problem if i take 3 Internet links to configure load balancing and other remain 2 Internet links for HA?

Looking for a way to allow an application without allowing all dependencies with no commit warnings

Issue background:

We have a policy for Application Whitelist of allowed applications on the internet firewall.  SourceForge-Base is one of these applications.  SourceForge-Base had dependencies on SSL, Web-Browsing, and SSH.  We allow SSL and Web-Brow

Virtual Wire with Response Pages

From what I can tell, it isn't possible to set a Management Profile on a virtual wire?  We wanted to take advantage of a response page for URL filtering but cannot seem to do so due to virtual wire.

Thanks,