cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

About DXiao

Announcements

Changes to the LIVEcommunity experience are coming soon... Here's what you need to know.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
DXiao
‎05-27-2019
since ‎04-15-2019
L0 Member
User Activity
User Profile
User Badges
Public Statistics
Date Registered ‎04-15-2019 06:19 AM
Date Last Visited ‎05-27-2019 03:05 PM
Total Messages Posted 1

Prisma Public Cloud Query - Exclude AWS security group that is not associated with any resources

by in Prisma Cloud Discussions
‎04-16-2019 06:51 PM
‎04-16-2019 06:51 PM
Hi,   Some policies are producing alerts against SGs that are not associated with any resources. Can you please advise how to customize the query and exclude those SGs?    For example, policy "AWS Security Groups allow internet traffic from internet to MYSQL port (3306)"  is defined as follows: config where cloud.type = 'aws' AND api.name='aws-ec2-describe-security-groups' AND json.rule = (((ipPermissions[?(@.toPort > 3306 && @.fromPort < 3306)].ipRanges[*] contains 0.0.0.0/0) or (ipPermissions[?(@.toPort == 3306 || @.fromPort == 3306)].ipRanges[*] contains 0.0.0.0/0)) or ((ipPermissions[?(@.toPort > 3306 && @.fromPort < 3306)].ipv6Ranges[*].cidrIpv6 contains ::/0) or (ipPermissions[?(@.toPort == 3306 || @.fromPort == 3306)].ipv6Ranges[*].cidrIpv6 contains ::/0)))     Thank you ... View more
Register or Sign-in
Contact Me
Online Status
Offline
Date Last Visited
‎05-27-2019 03:05 PM
Latest Tags
No tags yet
Latest Blogs
Latest Posts
Privacy Policy Terms of Use
Copyright 2007 - 2021 - Palo Alto Networks