Palo Alto Networks Knowledgebase: Quickly Search the Security Profiles and rule attributes in a Security Policy

Quickly Search the Security Profiles and rule attributes in a Security Policy

3596
Created On 02/08/19 00:02 AM - Last Updated 02/08/19 00:02 AM
Policy
Resolution

Sometimes we need to know which security policy has a required security profile applied, has a log at session end or start, or is disabled. 

 

To search security policies where

 

  • Antivirus profile AV1 is applied, use the following syntax:
    profile-setting/profiles/virus/member eq AV1

    Search.PNG

 

  • URL filtering profile UF1 is applied, use the following syntax:
    profile-setting/profiles/url-filtering/member eq UF1

  • Antispyware profile AS1 is applied, use the following syntax:
    profile-setting/profiles/spyware/member eq "AS 1"
  • Vulnerability profile VP1 is applied, use the following syntax:
    profile-setting/profiles/vulnerability/member eq VP1
  • File blocking profile FB1 is applied, use the following syntax:
    profile-setting/profiles/file-blocking/member eq FB1
  • If we want to search security policies all security policies that are disabled use following syntax
    disabled eq yes
  • Log at session start is selected, use the following syntax:
    log-start eq yes
  • Log at session end is selected, use the following syntax:
    log-end eq yes
  • A schedule profile is called, use the following syntax:
    schedule eq “Lunch time”
  • To search all security policies that are disabled, use the following syntax:
    disabled eq yes
  • To search a profile GROUP use the following syntax:
    profile-setting/group/member eq name-of-group


Attachments
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cla5CAC&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Attachments
Choose Language