This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About ekenda2
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About ekenda2
10-04-2017
5Posts
0Likes
0Solutions
Oct 04, 2017Last Visited
User
Activity
User
Profile
Latest posts by ekenda2
| Subject | Views | Posted |
|---|---|---|
| 1596 | 10-04-2017 01:38 PM | |
| 689 | 09-14-2017 10:12 AM | |
| 6393 | 09-13-2017 01:15 PM | |
| 6406 | 09-12-2017 10:28 AM | |
| 6581 | 09-12-2017 09:57 AM |
User Badges
Community Statistics
| Member Since | 09-07-2017 12:22 PM |
| Date Last Visited | 10-04-2017 01:54 PM |
| Posts | 5 |
10-04-2017
01:38 PM
I'm writing a script to alert when a new MAC address is seen for an IP address that's listed in an Internet-facing rule. I have it working pretty well, but I want to avoid alerting on rules that are themselves new. I'm calling the API via /config/devices/entry/vsys/entry/rulebase/security/rules, but the data I get back doesn't include any creation/modification date information. Is there a way to get that information via the API? Thanks.
... View more
09-14-2017
10:12 AM
Great, that's just what I need. Thanks!
... View more
09-13-2017
01:15 PM
Thanks! I'm now able to get things working using a wildcard match. Your suggestion of using action=complete doesn't work for me, though - when I use it, I get back an empty document like this: <response status =" success " code =" 19 " > <completions/> </response>
... View more
09-12-2017
10:28 AM
I had not, but I just did. Unfortunately, a request for /config/devices/entry[@name='localhost.localdomain']/vsys/entry[contains(@name,'vsys')]/display-name returns "No such node".
... View more
09-12-2017
09:57 AM
Similarly, how can you retrieve a list of vsys names on a single firewall using the API? I know you can pull the whole /config/devices/entry/vsys tree, but that takes forever and returns a lot of extra data. I'm currently looking at pulling /config/devices/entry /vsys/entry[@name='vsysX']/display-name starting with X=1 and incrementing until I get an error, but that seems really dumb. Ideally I'd use /config/devices/entry /vsys/*/display-name but it looks like the "xpath" expressions in the API don't support wildcards.
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
10-04-2017
01:54 PM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks