Palo Alto Improvements


mnagel
 Share

Recommended Posts

Here are some datasources we added to get better information on Palo Alto firewalls:

Certificate Status: KFWLJ9

High Availability Detail: EMXWRR (this one includes a bunch of HA info, including HA link status, compat status and so forth.  Many auto properties for reference on the local and peer units.  All datapoints currently use the default alert templates, but I am hoping to extend that and leverage the auto properties for those messages)

Support Status: 3YJJCZ

License Status: DXEAP4

All use the XML API, so will require security review (no idea how long that takes).

  • Upvote 2
Link to comment
Share on other sites

  • 2 weeks later...
  • 1 year later...
  • Administrators

 

14 hours ago, Michael Rodrigues said:

We switched everything to "Private" unless it was shared on this forum, out of an abundance of caution.

 

We'll be talking about the new Exchange features in today's webinar. One of the things we can discuss in the Q&A is the public/private status of community submitted modules.

Link to comment
Share on other sites

  • 6 months later...
  • 2 weeks later...
  • Administrators

The author needs to verify that the module has been published to the public repository. In simple cases, it's automatically made public at that point. If there is code in the module, it will undergo manual security review by the LM staff before it is made publicly available.

Link to comment
Share on other sites

20 minutes ago, Stuart Weenig said:

The author needs to verify that the module has been published to the public repository. In simple cases, it's automatically made public at that point. If there is code in the module, it will undergo manual security review by the LM staff before it is made publicly available.

Almost certainly there is code as Palo Alto checks virtually always require API access.  Review has seemed in most cases I have been involved with to be a mostly ad hoc process (or if not, definitely opaque). I suggested in one of our UI/UX meetings that there be a "Request Review" button or similar to create or escalate a request for security review.  As a bonus, use a ticketing system (this would be welcome for feedback as well, which as I understand generates internal-only tickets).  A unified customer visible ticket system for feedback and module review would be very helpful.

  • Like 1
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share