This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About btenberge
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About btenberge
05-01-2023
15Posts
5Likes
0Solutions
May 01, 2023Last Visited
User
Activity
User
Profile
Latest posts by btenberge
| Subject | Views | Posted |
|---|---|---|
| 1408 | 10-06-2021 10:10 PM | |
| 1464 | 10-06-2021 01:39 AM | |
| 5859 | 05-06-2021 11:24 PM | |
| 5860 | 05-06-2021 11:22 PM | |
| 6692 | 03-30-2021 05:37 AM | |
| 2453 | 01-31-2021 10:37 PM | |
| 2531 | 01-29-2021 02:45 AM | |
| 3152 | 04-06-2020 06:10 AM | |
| 3290 | 03-31-2020 12:48 AM | |
| 2373 | 01-13-2020 01:12 AM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 Like | 03-30-2021 05:37 AM | |
| 1 Like | 01-31-2021 10:37 PM | |
| 3 Likes | 08-15-2019 01:41 AM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 5 Likes | |||
| 1 Like | |||
| 3 Likes | |||
| 1 Like | |||
| 1 Like |
User Badges
Community Statistics
| Member Since | 10-12-2011 12:42 AM |
| Date Last Visited | 05-01-2023 08:31 AM |
| Posts | 15 |
| Total Likes Received | 5 |
10-06-2021
10:10 PM
@BPry , thanks for replying. I haven't yet, because they're a bit slow lately. But now I'll have to.
... View more
10-06-2021
01:39 AM
I've been trying to access the Apps hub (https://apps.paloaltonetworks.com/) for days now and I keep getting this error: {"statusCode":500,"error":"Internal Server Error","message":"An internal server error occurred"} Is there any ETA when this issue will be resolved?
... View more
05-06-2021
11:24 PM
Your reply could also be quite helpful, @Alexandre_Jodoin, thanks for sharing your solution! You guys are giving me some interesting things to look at.
... View more
05-06-2021
11:22 PM
@thenetworksfine Thanks for your reply! I haven't ever removed any old installation packages, I think, but it's worth checking out for sure.
... View more
03-30-2021
05:37 AM
1 Kudo
I'm sorry I don't have an answer to your question either, but I think this is a good subject because I'm having the same "revelations" lately. I have encountered some agents in our environment that appear to be working (they appear online and up-to-date), but half the files are missing in the installation folder, only cyserver.exe is running and upgrade attempts fail all the time. These specific instances do make it seem like everything is fine and dandy, while it's not. I'm currently trying to figure out a way to find these half-, or non-operational agents, myself, but I have nothing yet. I'm sure we're not the only ones dealing with this problem, so I'm hoping that there are some people that have already found a working solution.
... View more
01-31-2021
10:37 PM
1 Kudo
Thank you, Mivaldi, for this elaborate explanation and answer! I suppose reset-xxx is kinda like the Linux iptables Reject equivalence, it makes so much more sense now.
... View more
01-29-2021
02:45 AM
I noticed the default action for the new "NAT Slipstreaming Detection" signatures are set to Alert. How come they are not set to Drop or something else that stops this attack in its tracks? Also, is there a best practice on protecting against attacks, such as this one, in general? Or does it come down to personal/company preference? For example, do I create exceptions on the used Vulnerability Protection profiles and change the action there? Or is there a better way? What would be the best and safest action to use in these cases, Drop, Block IP (client or server?), or Reset [client|server|both]? When do I use Reset client, Reset server or Reset both and why do I use this instead of Drop or Block IP? I read the documentation about the differences between these actions, but I still don't understand it enough to pick the right action all the time. I'm still thinking in dropping unwanted traffic the old fashioned way.
... View more
04-06-2020
06:10 AM
Thanks for your reply David. After this weekend's migration I was still only able to download Broker VM 6.1.4 from the support page. Only after reading the newer article "Configure Your Broker VM" I noticed that there's a download option from the Settings -> Broker VMs page on our new Cortex XDR page. It seems like the old Broker VM won't proxy new Cortex XDR agents, so I'll have to deploy this new 7.1.13 VM alongside. Anyway, problem solved!
... View more
03-31-2020
12:48 AM
Hi, Recently I watched the Cortex XDR 2.0 migration information video and there was mention of having to need to upgrade the on-premise Broker VM. I wanted to make sure we are ready for the migration and, if necessary, prepare our environment where needed. In the updated Broker VM installation documentation, I saw some new things, like configuration through a web page. Having tested that on out on-prem Broker VM, I found out there is no web-ui listening. So I figured I need to upgrade it. I checked our on-prem Broker VM version and it's at 6.2.12. Then I went to the download assets page and noticed the latest available version in 6.1.4. This doesn't look like an upgrade to me. When I restarted the services on our Broker VM for a test, I noticed webui.service as being inactive. What do I need to do now? Do I still need to deploy the latest Broker VM? Or can I activate that webui somehow? I would really like to have everything ready before next weekend, when we are being migrated to Cortex XDR 2.0 (we are currently using TMS).
... View more
- Tags:
- 2.0
- Cortex
- Cortex XDR
01-13-2020
01:12 AM
Thanks for sharing your input @BPry.!
... View more
01-09-2020
03:34 AM
I've been creating security rules to allow Traps Management (with the traps-management-service App-ID) pretty tightly by also defining destination networks (using FQDN objects for the multiple <tenant> .traps.paloaltonetworks.com and common contentprod and distributions hosts). According to the documentation on https://docs.paloaltonetworks.com/traps/tms/traps-management-service-admin/get-started-with-tms/enable-access-tms.html it should be enough to simply use the App-ID and keep it at that. So now that got me thinking, does the traps-management-service App-ID take destination networks into account? Am I too paranoid doing things like this, or is it good practice to keep security rules as tight as possible, even with App-ID's?
... View more
09-04-2019
04:41 AM
I like the Dashboard very much, but I'm really missing a refresh or update link. When I'm keeping count of things, it's quite annoying having to wait for a full page refresh or switching between tabs.
... View more
08-15-2019
01:41 AM
3 Kudos
Traps Linux agents are available for several Linux distributions, including CentOS and Red Hat Enterprise. Are there any plans on supporting Fedora Linux platform? You might think it should install, because it's virtually the same as Red Hat Enterprise or CentOS, but it doesn't pass the preerquisites check. The installer doesn't think the package policycoreutils-python is installed, even though it most certainly is. It is named python2-policycoreutils though, so it doesn't match the search query in the install script.
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
05-01-2023
08:31 AM
|
Latest Tags
No tags yet
Likes Given To
| User | Likes Count |
|---|---|
| 1 | |
| 1 | |
| 2 | |
| 1 | |
| 1 |
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks