Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Get Started
- News & Events
- Collaboration
- Education Services
- Technologies
- Next-Generation Firewall
- GlobalProtect
- Threat Prevention Services
- Endpoint Protection
- SSL Decryption
- App-ID
- Content-ID
- User-ID
- 5G
- IoT Security
- Cloud Identity Engine
- Panorama
Network Security
- Prisma Access
- Prisma Cloud
- Prisma SD-WAN
- CN-Series
- VM-Series:
- OCI
- Alibaba
- AWS
- GCP
- Azure
Cloud Security
- Cortex XDR
- Cortex XSOAR
- Cortex Data Lake
- Cortex Xpanse
Security Operations
- Resources
- COVID-19 Response Center
About PKota1
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- LIVEcommunity
- About PKota1
09-17-2021
1Post
0Likes
0Solutions
Sep 17, 2021Last Visited
User
Activity
User
Profile
Latest posts by PKota1
| Subject | Views | Posted |
|---|---|---|
| 185 | 09-17-2021 05:59 AM |
User Badges
Community Statistics
| Member Since | 09-17-2021 05:50 AM |
| Date Last Visited | 09-17-2021 09:20 AM |
| Posts | 1 |
09-17-2021
05:59 AM
Trying to Join 2 API: aws-ec2-describe-security-groups & aws-vpc-transit-gateway-attachment 1. List of Security Groups that allow everything: config from cloud.resource where cloud.type = 'aws' AND api.name= 'aws-ec2-describe-security-groups' AND json.rule = isShared is false and (ipPermissions[?any((ipProtocol equals tcp or ipProtocol equals icmp or ipProtocol equals icmpv6 or ipProtocol equals udp) and (ipRanges[*] contains 0.0.0.0/0 or ipv6Ranges[*].cidrIpv6 contains ::/0))] exists) as X; 2. Extracting List of VPCs that dont have a particular Gateway AttachmentID: config from cloud.resource where cloud.type = 'aws' AND api.name= 'aws-vpc-transit-gateway-attachment' AND json.rule = transitGatewayId does not contain "XXXXXXXXX" as Y; final Join: config from cloud.resource where cloud.type = 'aws' AND api.name= 'aws-ec2-describe-security-groups' AND json.rule = isShared is false and (ipPermissions[?any((ipProtocol equals tcp or ipProtocol equals icmp or ipProtocol equals icmpv6 or ipProtocol equals udp) and (ipRanges[*] contains 0.0.0.0/0 or ipv6Ranges[*].cidrIpv6 contains ::/0))] exists) as X; config from cloud.resource where cloud.type = 'aws' AND api.name= 'aws-vpc-transit-gateway-attachment' AND json.rule = transitGatewayId equals "XXXX" as Y; filter ' $.X.vpcId == $.Y.resourceId'; show X;
... View more
LEGAL NOTICES
Copyright 2007 - 2021 - Palo Alto Networks
