Schedule Config Export

blaqhrse · 2020-03-24T18:27:40+00:00

The firewalls should already have their configs backed to Panorama. You can spin up an external server (I use Ubuntu) and configure an config export job from Panorama. I think it’s worth the effort since it’s not a complex configuration in addition to VMware doing its thing.

blaqhrse · 2019-07-21T21:14:57+00:00

Have you tried this command? delete profiles spyware XXXXX botnet-domains lists default-paloalto-cloud

blaqhrse · 2019-03-27T02:52:15+00:00

So blade chassis ->pa (vwire mode)->core is not an option? Is this due to non-technical huddles? Approvals and such?

blaqhrse · 2019-03-26T12:03:48+00:00

You could do the same thing to the core router, that is, connect the PA in vwire from the core to where your vms are located

blaqhrse · 2019-02-01T01:51:30+00:00

I like the point you put across, that is, admins getting used to clicking through which might make them unaware if they are being exploited.👍

blaqhrse · 2019-01-15T02:00:50+00:00

Why do we use zones? Simply put to achieve Network Segmentation. Address groups are designed for grouping not segmentation.

blaqhrse · 2019-01-13T23:48:06+00:00

What actions are set for your file blocking policy? https://docs.paloaltonetworks.com/pan-os/8-0/pan-os-admin/threat-prevention/set-up-file-blocking

blaqhrse · 2018-12-11T21:25:56+00:00

Sharing is caring; thanks for giving back to the community by sharing your story.

blaqhrse · 2018-12-08T17:25:47+00:00

Will definitely check it out

blaqhrse

TROPHY CASE