This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

About kevin_thys

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
kevin_thys
‎08-17-2020
since ‎08-10-2011
L3 Networker
User Activity
User Profile
Latest posts by kevin_thys
View All
My Liked Posts
View All
User Badges
Community Statistics
Member Since ‎08-10-2011 05:44 AM
Date Last Visited ‎08-17-2020 05:44 AM
Posts 73
Total Likes Received 1

Re: Minemeld stuck after reboot

by in General Topics
‎03-15-2017 01:24 PM
‎03-15-2017 01:24 PM
Hi Luigi,   Can we still do some remote session to see what is going wrong?   Greets ... View more

Re: Minemeld stuck after reboot

by in General Topics
‎02-21-2017 03:03 PM
‎02-21-2017 03:03 PM
Yes, I can do the session friday 24/02 around 09:00? ... View more

Minemeld stuck after reboot

by in General Topics
‎02-13-2017 02:09 AM
‎02-13-2017 02:09 AM
I deployed serveral times Minemeld and everything is running fine. But when I reboot Minemeld I got stuck in the boot procedure.  First it hangs for 120 seconds: Cloud-init-nonet[14.62]: waiting 120 seconds for network devices. after 120 seconds: Stopping Handle aaplying cloud-config Waiting for network configuration... waiting up to 60 more seconds for network configuration...   Then hangs for some time at: Stopping save kernel messages Continues after 20-30 seconds and hangs at: Stopping Pollinate to seed the pseudo random number generator It stays here forever. I'am available for a remote session if you would like to see the problem.  We have had this problem multiple times now.      ... View more

Re: Confused over EBL size limit

by in General Topics
‎02-08-2017 12:14 PM
‎02-08-2017 12:14 PM
Hi Luigi,   I tried splitting the list but still getting error that maximum in the list is exceeded.   Config firewall: xxx-Ransomware-IPv4-01 { recurring { hourly { at 45; } } url https://ip/feeds/xxx-Ransomware-IPv4?n=4600; type ip; description "Ransomware Minemeld list Medium confidence level"; } xxx-Ransomware-IPv4-02 { recurring { hourly { at 46; } } url https://ip/feeds/xxx-Ransomware-IPv4?s=4600&n=4600; type ip; } xxx-Ransomware-IPv4-03 { recurring { hourly { at 47; } } url https://ip/feeds/xxx-Ransomware-IPv4?s=9200&n=4600; type ip; }   Running lateste Minemeld and PAN-OS 7.0.9.   Error received when commit is done: EBL(vsys1/xxx-Ransomware-IPv4-02) Exceeding max number of ips at line 4701 When I check in CLI it is starting at 4600 but not ending untill the end of the list. I think that the parameter is n=4600 is not working.  ... View more

Exceeding IPs in one list

by in General Topics
‎12-16-2016 06:49 AM
‎12-16-2016 06:49 AM
Hi,   The miner Ransomware IP has > 10000 so I'am wondering how I could solve this issue. Should have some output feed that you can define to take a certain amount of IP's so you can map that on your hardware. And then create a second output that is skippen a defined amount of IPs an creating output feed with next range of IPs Something like: miner => processor aggregator => output A en output B. => output A : IP = 1 - 5000 => output B: IP = 5001 till 10000 ... Maybe any idea?   Regards, Kevin ... View more

Re: Detailed view miners

by in General Topics
‎12-02-2016 11:58 AM
‎12-02-2016 11:58 AM
Superb implementation! Thanks @lmori ... View more

Re: Detailed view miners

by in General Topics
‎11-28-2016 01:06 AM
‎11-28-2016 01:06 AM
Hi,   Ok you can indeed inspect the configuration of each miner. Having table overview where you can sort based on level, stable/experimental and share color would be nice feature for upcoming release maybe.    Greets, Kevin ... View more

Re: Missing add button config tab

by in General Topics
‎11-28-2016 01:03 AM
‎11-28-2016 01:03 AM
Hi,   Having the add sign by default would be usefull when setting up the configuration.  ... View more

change webcertificate

by in General Topics
‎11-25-2016 02:45 AM
‎11-25-2016 02:45 AM
Hi,   Testing with Rome release I notice we need to have trusted CA on the Minemeld webserver. You can't use the Minemeld default certificate to import on the PA firewall. So I had to manually change certificate in the NGINX.  Maybe this could be included in the webinterface of Minemeld that you can upload and change the certificate?     ... View more

Missing add button config tab

by in General Topics
‎11-25-2016 02:42 AM
‎11-25-2016 02:42 AM
Hi,   I don't see any add button anymore on the config tab.  ... View more

Detailed view miners

by in General Topics
‎11-24-2016 03:22 PM
‎11-24-2016 03:22 PM
Hi,   Do we can have a table view on the minors were you can see easily confidence level, state experimental or stable, ... ?   Regards,   Kevin ... View more

Re: sslvpn: exited x times waiting y seconds to retry

by in General Topics
‎12-10-2015 02:51 AM
‎12-10-2015 02:51 AM
yes we upgraded to 6.1.7 to solve this issue. Was quite ok for some time longer as before but now we received it again. Case is open.  ... View more

sslvpn: exited x times waiting y seconds to retry

by in General Topics
‎12-09-2015 12:50 AM
‎12-09-2015 12:50 AM
Hi,   Getting following error: sslvpn: exited x times waiting y seconds to retry l3svc: exited x times waiting y seconds to retry   Anyone having same messages? Hardware is 2050 with 6.1.7 running.   Regards,   Kevin ... View more

Re: how to configure wildfire to block a malicious file?

by in General Topics
‎03-24-2015 04:08 AM
‎03-24-2015 04:08 AM
Hi, The WF signature database on the devices don't have all signatures. So if your file is malicious that indicates a file was inspected by WF and with hash check your firewalls knows this verdict. But to block the file it needs to have a signature in the WF database on your device. If the algorithm to select signatures being in the WF database not selected the signature for your file, your device will not be able to block it. If the file is triggered the WF algorithm will select the file again to be in the WF database that is pushed towards the devices in one of the next updates. Then you will see it gets blocked. That is how it works in fact, of course a bug is also possible Regards, Kevin ... View more

Google-calendar-base from iOS devices

by in General Topics
‎10-28-2013 12:48 PM
‎10-28-2013 12:48 PM
Hi, I applied an SSL decrypt profile and with no blocking configuration if decryption would fail. Now I notice that on iPad with IOS7.0.x the calendar from google is not working. It appears in the traffic log as decrypted and the application is seen on 443. So looks to be working but it is not updating. Also I see traffic send and received. Somebody with same issue and maybe a solution to fix this? All other google stuff looks to be working nice with decryption enabled. Regards, Kevin ... View more
Register or Sign-in
Contact Me
Online Status
Offline
Date Last Visited
‎08-17-2020 05:44 AM
Latest Tags
No tags yet
Likes Given To
View All
Likes From
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks