This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Cookie Policy. Click Preferences to customize your cookie settings.
About efrancis
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About efrancis
03-16-2023
181Posts
87Likes
20Solutions
Mar 16, 2023Last Visited
User
Activity
User
Profile
Latest posts by efrancis
| Subject | Views | Posted |
|---|---|---|
| 268 | 01-19-2023 04:15 PM | |
| 1399 | 03-16-2022 12:47 AM | |
| 3168 | 07-16-2020 06:56 AM | |
| 3793 | 06-30-2020 06:29 AM | |
| 3820 | 06-30-2020 05:51 AM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 Like | 04-07-2020 05:45 AM | |
| 1 Like | 02-05-2020 06:23 AM | |
| 1 Like | 10-23-2019 07:03 AM | |
| 3 Likes | 06-13-2017 08:35 AM | |
| 1 Like | 04-23-2019 07:19 AM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 1 Like | |||
| 1 Like |
User Badges
Community Statistics
| Member Since | 08-31-2016 08:26 AM |
| Date Last Visited | 03-16-2023 11:28 AM |
| Posts | 181 |
| Total Likes Received | 20 |
03-12-2018
06:30 AM
You can use the built in tool: cytool https://www.paloaltonetworks.com/documentation/34/endpoint/endpoint-admin-guide/troubleshooting/cytool/restore-a-quarantined-file-using-cytool If you have questions about the process in the link, I would recommend to open a case with traps support.
... View more
03-08-2018
08:44 AM
1 Kudo
Each of the cores and the single console do not communicate with eachother at all. the only pieces that shares a connection to the core and console, is the database. Each piece stands alone from eachother
... View more
03-08-2018
08:33 AM
1 Kudo
Can someone explain how in a DMZ environment a DMZ agent sends its files to be checked to the Wildfire Cloud? The ESM core in the DMZ sends the file to wildfire, the database stores the transaction, the console displays some of the details (like the Hash, and the verdict associated with the hash) Does the ESM have to be installed with the console, mostly the internal ESM, have access to the BITS folder on the DMZ ESM, if so why? im not sure i understand the questions, but ill do my best to answer; In any environment, you on need a single console. This console should be installed on the internal network. the DMZ core does need to be configured to allow bits traffic and have a matching quarintine folder setup. Doesn't the DMZ Agent send its files to the DMZ ESM, which loads them into the Wildfire Cloud itself? The internal ESM only receives the event, whether the upload took place or not and the Verdict. correct. Which ports must be open from the internal ESM to the DMZ ESM and which ports must be open in the opposite direction? 443/80(depending on SSL or not), 1433. 1433 just needs to be inbound
... View more
02-23-2018
10:15 AM
Dennis, With non-persistent virtual desktops, the Traps agent receives a licenses from the pool of available endpoint licenses. The ESM automatically revokes the license when the user logs off, the agent is uninstalled, the session ends, or when the VDI is inactive for two consecutive heartbeats plus 25 minutes. Revoking the license frees it up for use by another Traps agent. This means that the agent checks in with an active user, a license will be allocated to the traps client, a command is sent to the ESM to revoke the license when a user logs off. Until the agent from an active users session checks in, the machine will appear unlicensed. The agent attempts to check in as soon as a user logs into the VDI. What you describe is expected behavior.
... View more
09-05-2017
10:01 AM
Darshil, I would recommend to open a case with support to manually review the endpoints failure to upgrade. Also, you do not need to install each version, You can install the latest version (4.0.0 to 4.0.4, instead of 4.0.0-->4.0.1-->4.0.2, etc.)
... View more
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks