starta cl
I have a question regarding the licensing model for the Cloud Manager. Specifically, if I have four virtual machine firewalls and four physical firewalls, how should I measure the required licenses?
I have a question regarding the licensing model for the Cloud Manager. Specifically, if I have four virtual machine firewalls and four physical firewalls, how should I measure the required licenses?
Hi,
Understand that cortex XDR Pro GB can ingest data from multiple source. My customer would like to use this license to ingest data from Fortinet firewall. Previously, I did sizing based on strata logging service estimator by selecting Cortex XDR
...
I needed to modify the earlier question; it was not a BGP keepalive timer, but as mentioned below.
"I wish to edit the BGP timers for Service Connection from Prisma Access. The settings can be viewed from Workflow ---Prisma Access Setup---Ser
...
Hi,
I am currently in the process of setting up IoT Security, Does not Require Data Lake service but I am running into issues. I have managed to setup the portal and that is reachable. The problem seems to be sending the logs from the A/P units to th
...
Hi,
Question #1: How do I get the CDL Status "Certificate" to go green?
Question #2: What's the best way to send only alert logs from the FW to CDL so we can take advantage of the AIOps Free alerts?
#Show Status has "certificate" greyed out and o
...
Hi Community people,
we have a few machines with macOS 10.13 High Sierra, as per the documentation 7.5CE version should support it.
in the agent installation option, we are unable to see 7.5 CE version agent installers. we could download only t
...
Hello All,
I would like to know few things Prisma Access logging:
1. From the documentation I can see that Prisma Access by default forward all logs to Cortex Data lake. We can forward syslog from cortex data lake to external syslog server in CSV, CE
...
Hello All,
I would like to know few things Prisma Access logging:
1. From the documentation I can see that Prisma Access by default forward all logs to Cortex Data lake. We can forward syslog from cortex data lake to external syslog server in CSV, CE
...
Hello people ,
I have started working on PANW XDR study and currently i am in initial stages on my study .
1)Is PANW XDR uses its native inbuild data lake ?
I am confused with Architecture diagram which says Data lake and Data layer . Are these
...
Hi everyone,
Need your help in understanding the Cortex Data Lake integration migration request. We have received a notification indicating that the Cortex XDR request for migrating the Cortex Data Lake integration directly into Cortex XDR. Should
...
Hello,
I'm trying to write a XQL query to find DNS requests from clients in multiple IP ranges, e.g. "10.0.0.0/24, 10.1.1.0/24, 10.5.2.0/24, ..." and also filter DNS query name based on hundreds of domain names obtained from Firewall logs. How should
...
Hello all,
I have a few questions related to Cortex XDR and I would be happy if you answer them.
Hi
We are migrating our devices from CDL to XDR. We connected our Prisma Access with the XDR and getting logs for the SD-WAN ion devices. Sincne On Prem Firewalls are connected with the existing CDL, im not getting proper documentation for shifting t
...
I am trying to do a search in CDL which will show me when a user disables their Global Protect agent on their end point. I am able to perform this search in Panorama using the search "(opaque contains 'Agent Disable')" under GlobalProtect logs. I a
...
Hello,
I have been doing some searching on if I can get XDR endpoint logs like processes and etc into a third party SIEM.
Based on the XDR API there is no way to export events (You can technically run XQL queries using the API but this would get logged