This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Cookie Policy. Click Preferences to customize your cookie settings.
About NHorsch
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About NHorsch
01-15-2021
10Posts
0Likes
0Solutions
Jan 15, 2021Last Visited
User
Activity
User
Profile
Latest posts by NHorsch
| Subject | Views | Posted |
|---|---|---|
| 977 | 04-04-2014 04:56 AM | |
| 937 | 02-17-2014 03:08 AM | |
| 1102 | 12-06-2013 06:28 AM | |
| 1562 | 11-11-2013 09:04 PM | |
| 1645 | 11-11-2013 07:07 AM |
User Badges
Community Statistics
| Member Since | 09-23-2013 10:17 PM |
| Date Last Visited | 01-15-2021 02:45 AM |
| Posts | 10 |
04-04-2014
04:56 AM
can anyone tell me the maximum size a wildfire report can have in xml?
... View more
02-17-2014
03:08 AM
Hi, I am trying to save the data coming in xml format as wildfire report. I have space consideration can anyone tell the maximum size a wildfire report can have in xml format? Thanks
... View more
- Tags:
- wildire
12-06-2013
06:28 AM
Hello, I am currently on Palo Alto v 6.0.0-b23 and facing an issue with the format of syslog message. if we pass the same malicious file through Palo Alto device, syslog message forwarded by Palo Alto v5.0.6 and v6.0 beta are different. Palo Alto 5.0.6 forwards threat name and ID while Palo Alto 6 beta forward threat ID twice. Log on Palo Alto 6.0 Dec 05 22:38:41 10.208.35.87 Dec 5 22:36:06 PA-VM 1,2013/12/05 22:36:06,007000001148,THREAT,virus,1,2013/12/05 22:36:01,xx.xx.xx.xx,xx.xx.xx.xx,0.0.0.0,0.0.0.0,Test,,,ftp,vsys1,Trust,Untrust,ethernet1/1,ethernet1/2,Log Forwarding,2013/12/05 22:36:06,38355,1,49512,53627,0,0,0x0,tcp,deny,"filename",2001508(2001508),any,medium,server-to-client,0,0x0,192.0.0.0-192.255.255.255,192.0.0.0-192.255.255.255,0,,0,,, Log on Palo Alto 5.0.6 May 2 06:33:42 10.102.102.45 1,2013/05/02 06:33:42,0006C111278,THREAT,virus,1,2013/05/02 06:33:36,xx.xx.xx.xx,xx.xx.xx.xx,,,rule2,,,ftp,vsys1,trust,trust,ethernet1/2,ethernet1/1,server-1,2013/05/02 06:33:41,9761,1,32277,44445,0,0,0x80000000,tcp,deny,"filename",Trojan/Win32.Loring.a(2001508),any,medium,server-to-client,81,0x0,192.0.0.0-192.255.255.255,192.0.0.0-192.255.255.255,0, Is this change intentional or will it be fixed in the GA version or already fixed in the beta 4?
... View more
Labels:
- Labels:
-
Configuration
-
Troubleshooting
11-11-2013
09:04 PM
Thanks kadak for replying... I have a doubt..... But it does not appear in every log line....it is in only THREAT,virus log line..... If its an incremental number then it should also present in other logs too.
... View more
11-11-2013
07:07 AM
Oct 27 23:00:32 10.208.35.87 Oct 27 22:57:23 PA-VM 1,2013/10/27 22:57:22,007000001148,THREAT,virus,1,2013/10/27 22:57:22,192.168.1.73,192.168.2.71,0.0.0.0,0.0.0.0,Test,,,ftp,vsys1,Trust,Untrust,ethernet1/1,ethernet1/2,Log Forwarding,2013/10/27 22:57:22,9906,1,49497,53510,0,0,0x80000000,tcp,deny,"eicar.com",100000(100000),any,medium,server-to-client,0,0x0,192.168.0.0-192.168.255.255,192.168.0.0-192.168.255.255,0,,1199317001038725136,,, i have seen on extra field added in the default syslog format of the threat log ..marked as red as you can see above....what is the name of the field and its significance? I didn't find the updated syslog integration document on the palo alto website....can you people please update the same.
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
01-15-2021
02:45 AM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks