Subscribe:
RSS feed
-
Subscribe
Subscribed
Already have a WordPress.com account? Log in now.
Hi there. I just had a case within Prisma SASE as always and I thougth its good that we work with userid based rules for giving users the freedom for mobility, but the hard rule at the end of the rulebase where we just blindly block all unknown users is not so friendly. Or if […]
July 6, 2023
We all have the problem in large environments with many Palo Alto Firewalls that they just generate too many logs and it’s not manageable in the current state, at least it was not for me :-) I prefer the categorization the Palo Alto Firewall has, but it’s just too short (this list is from the […]
July 4, 2023
In the middle of 2021 I worked for the first time with SASE Service from Palo Alto and at that time there was no ADEM (Autonomous Digital Experience Management or Monitoring) so I had to invent something on my own for the same purpose.That was the first time I started to work with Microsoft Powershell […]
July 8, 2022
Palo Alto documentation is very good, but I dont like the Palo Alto web page when I am looking for a keyword in addressed issues or in the known issues, since its listed under each PANOS Release on different web pages. If you have to go through 10-20 PANOS Release notes its really boring every […]
July 8, 2022
As you know the Local Area Network Denial (LAND) attack is a type of Denial of Service (DOS) attack in which the attacker attacks the network by sending the same source and destination IPs and ports (like TCP SYN where the source IP and destination IP is from the destination device itself). if you check […]
November 15, 2018
I can only quote now since I am a bit tired: “MineMeld is a threat intelligence processing tool that extracts indicators from various sources and compiles the indicators into multiple formats compatible with AutoFocus, the Palo Alto Networks® next-generation firewall, and other security and information event management (SIEM) platforms.” Here are some more details: minemeld […]
April 19, 2017
The following Application is a nice tool that was built to automate report generation and to make monthly or weekly report analisys where you can find the changes in the firewall events between months or weeks. The Palo Alto Firewall has a great built-in Reporting Service that can generate any kind of custom reports within […]
April 11, 2017
On a network device sometimes we have to collect outputs of multiple commands that contains a counter within its output. To get a state from those counters in outputs we must issue the commands that generates the output multiple times and we should realise if a specific counter value increasing quickly or slowly or does […]
October 25, 2016
The App sophos-live-protection and the Palo Alto dns-proxy Affair As I first met with this problem I just thought its my first vulnerability that I have found :-), but it wasnt! It was the administrator who forgot to go to a palo alto school before touching a palo alto firewall. :-) The firewall I configured […]
January 14, 2015
This is the part 2 of the troubleshooting commands that can help you better understand what and how you can troubleshoot on Palo Alto Next Generation Firewall in cli.The Part 1. can be found here. 1. Capture and logging specific traffic2. Logging traffic for global counters3. Updates3.1 Applications and Threats update3.2 Software Upgrades3.3 Licensing 1. […]
itsecworks 
September 7, 2023
0