This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About mmmccorkle
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About mmmccorkle
01-31-2018
196Posts
20Likes
14Solutions
Jan 31, 2018Last Visited
User
Activity
User
Profile
Latest posts by mmmccorkle
| Subject | Views | Posted |
|---|---|---|
| 11515 | 08-18-2016 10:47 AM | |
| 3623 | 11-24-2015 03:45 PM | |
| 2094 | 11-24-2015 03:43 PM | |
| 10254 | 11-24-2015 03:42 PM | |
| 3358 | 11-24-2015 03:41 PM | |
| 2632 | 10-26-2015 04:25 PM | |
| 3232 | 09-02-2015 02:18 PM | |
| 7927 | 08-28-2015 05:55 PM | |
| 2635 | 08-21-2015 10:42 AM | |
| 3961 | 08-21-2015 10:39 AM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 Like | 10-03-2014 10:42 AM | |
| 1 Like | 08-18-2016 10:47 AM | |
| 1 Like | 11-24-2015 03:43 PM | |
| 1 Like | 09-02-2015 02:18 PM | |
| 1 Like | 08-28-2015 05:55 PM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 1 Like | |||
| 1 Like | |||
| 1 Like | |||
| 1 Like | |||
| 2 Likes |
User Badges
Community Statistics
| Member Since | 07-21-2014 12:21 PM |
| Date Last Visited | 01-31-2018 10:01 PM |
| Posts | 196 |
| Total Likes Received | 18 |
08-18-2016
10:47 AM
1 Kudo
Hey,
Even the latest Pan-OS version running in FIPS mode still has cbc enabled. There is not a way to modify this.
Non-FIPS/CC mode
Decryption (SSHv2 only)
Ciphers: aes128-ctr,aes192-ctr,aes256-ctr,aes128-cbc,aes192-cbc,aes256-cbc
MAC Algorithms: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-sha1-96,hmac-md5-96
aes192-ctr
aes256-ctr
aes128-gcm
aes256-gcm
FIPS/CC mode
HMAC – HMAC-SHA-1
Authentication – RSA (2048 bit key only)
Key agreement – DH Group 14 (2048 bit)
Symmetric Algorithm – AES128, AES192, or AES256 (CBC or CTR for all three)
... View more
11-24-2015
03:45 PM
I believe the response pages are enabled per interface, so forming this from only a specific zone, to another zone, with security policies of some form will not be an option.
... View more
11-24-2015
03:43 PM
1 Kudo
I've heard Malc0de is good, but look at these.
http://panwdbl.appspot.com/
https://live.paloaltonetworks.com/t5/Community-Blog/Subscribing-to-the-DShield-Top-20-on-a-Palo-Alto-Networks/ba-p/51817
... View more
11-24-2015
03:42 PM
In the case I have, there was cdb corruption, but this was most likely due to the /opt/panlogs/ partition being 100% full.
... View more
10-26-2015
04:25 PM
Hey,
I would suggest updating pandb and clearing the cache.
On 10/21 this was set to Malware, but later on 10/21 it was set back to computer-and-internet-info. ( 2015.10.21.401)
'show url-cloud status'
'delete url-database all'
'clear url-cache all'
' request url-filtering update url nsatc.net'
... View more
09-02-2015
02:18 PM
1 Kudo
I believe that if we do not select any profile, no profile will be applied. We can still control a couple generic options, like max egress and guaranteed egress for certain interfaces, between clear text and encrypted traffic, but without a profile selected it won't do much more than that. Any easy way to test would be to go ahead and set it up as you mentioned and then check out the session information in the CLI. Thanks!
... View more
08-28-2015
05:55 PM
1 Kudo
Hey, I wanted to share my one case with Nessus. https://discussions.tenable.com/message/32299#32299 Plugin ID 83875. This is a false positiveand Nessus is working to fix this. Thanks!
... View more
08-21-2015
10:42 AM
Can you list some of the speicific URLs that catch on category any? Are you using safe search enforcement ?
... View more
08-21-2015
10:39 AM
This is correct. 150 between them all.
... View more
08-14-2015
08:27 AM
I may be talking about the wrong feature, but I know we can import keys in the CLI wtih the following command string. 'configure' 'set mgt-config users admin public-key dwlakjdlwakjdlwakjdlwakjd9821jkhdwalkjhdwkajhdwakjdhwakjdhwadwadwa'
... View more
07-26-2015
07:57 PM
1 Kudo
The only way URL Filtering logs will be created is if we have a URL Filtering Profile attached to the rule passing the traffic and the action is set to anything but Allow. (Alert, Block)
... View more
07-25-2015
04:22 PM
I believe that the engine is still active, we just have to create our own custom categories instead of using the pre-defined ones with the purchased license. Thanks!
... View more
07-23-2015
02:37 PM
This may have already been mentioned, but I'd highly suggest you use the URL Filtering profile categories to filter categories instead of putting it into that portion of the rule itself.
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
01-31-2018
10:01 PM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks