alert tcp $HOME_NET any -> $EXTERNAL_NET any (msg: "[PALO-ALTO] User Authenticated From Outside Home Country"; content: "User"; content: "authenticated"; country_code: track by_src, isnot $HOME_COUNTRY; parse_src_ip: 1; classtype: successful-user; reference: url,live.paloaltonetworks.com/twzvq79624/attachments/twzvq79624/learning_tkb/428/1/System_log_PANOS4.1rev3.xlsx; sid: 5002590; rev: 2;)
-- Main.Sagan-Wiki-Add - 2016-8-30 New revisions of 5002590 will be below...
Edit | Attach | Topic revision: r1 - 2016-08-30 - Sagan-Wiki-Add
Site map
Main web
Users
Groups
Index
Search
Changes
Notifications
RSS Feed
Statistics
Preferences
Copyright © 2008-2020 by the contributing authors. All material on this collaboration platform is the property of the contributing authors. Ideas, requests, problems regarding TWiki? Send feedback