This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About mgusta
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About mgusta
10-17-2022
32Posts
3Likes
0Solutions
Oct 17, 2022Last Visited
User
Activity
User
Profile
Latest posts by mgusta
| Subject | Views | Posted |
|---|---|---|
| 1072 | 04-01-2020 04:34 AM | |
| 2041 | 02-08-2019 12:15 PM | |
| 6778 | 04-18-2018 06:21 AM | |
| 6782 | 04-18-2018 05:44 AM | |
| 6814 | 04-18-2018 04:10 AM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 Like | 12-18-2014 02:50 AM | |
| 1 Like | 12-18-2014 02:14 AM | |
| 1 Like | 12-19-2014 12:05 AM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 1 Like | |||
| 1 Like |
User Badges
Community Statistics
| Member Since | 12-18-2014 12:25 AM |
| Date Last Visited | 10-17-2022 04:43 AM |
| Posts | 32 |
| Total Likes Received | 3 |
04-01-2020
04:34 AM
Hi, I would like to stop (block) an ip when there are a number of failed logon attempts but I cant get it to work. The vulnurability signatures are not being triggered. The other day someone tried over 400 different user names against out owa. 6 tries for each. None were sucessfull, and we use MFA, but I still want to halt the attack. Can it be done? I´ve enabled inbound decryption and now I see application Outlook-web insteaf of just ssl. I´ve also created exceptions for all brute force signatures to trigger after just 5 repeats for testing. But no child signatures (failed log on attempt etc.) are triggered so the parent signature never fires no matter how low I set the threashold. What could be wrong? Is the decryption still not working fully so the failed attempts are hidden in the ssl stream? How can I troubleshoot? Thanks, Mikael
... View more
04-18-2018
06:21 AM
I deployed the https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64.ova on one esxi host and then
installed the MineMeld cloud-init ISO. Then I imported the config: https://paloaltonetworks.app.box.com/s/4ubmkgrq72a8mdd24j733ddqdgbkyvv4
//Mikael
... View more
04-18-2018
05:44 AM
Ok, so is that a file I download once availiable and append (or replace?) in minemeld? Thanks
... View more
04-18-2018
04:10 AM
Hi,
When trying to use Minemeld to enable access to Office365 MS Teams brakes. This is because url api.teams.skype.com is not in the url list minemeld pulls. Instelad this url is being categorized as 'internet-communications-and-telephony' by panos and that category is blocked in the url filter. Also, we have other url categories we´ve manually created to disable ssl decryptions for some sites. This also becomes a problem as Panos then identifies these sites as belonging not to minemelds EDL but the other list. In which order is the different URL category list processed? Nayway, what is the best way to manage this? Can I manually add an url to minemeld?
Thanks,
Mikael
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
10-17-2022
04:43 AM
|
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks