diff --git a/PALOALTO/VA/.meta_DEV b/PALOALTO/VA/.meta_DEV deleted file mode 100755 index 3594ed3d..00000000 --- a/PALOALTO/VA/.meta_DEV +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1436349027395 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1436349027374 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/.meta_V9.1 b/PALOALTO/VA/.meta_Orchestration similarity index 100% rename from PALOALTO/VA/.meta_V9.1 rename to PALOALTO/VA/.meta_Orchestration diff --git a/PALOALTO/VA/DEV/.meta_Basic b/PALOALTO/VA/DEV/.meta_Basic deleted file mode 100755 index 8db6e661..00000000 --- a/PALOALTO/VA/DEV/.meta_Basic +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1438696821746 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696821727 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/DEV/.meta_Filtering b/PALOALTO/VA/DEV/.meta_Filtering deleted file mode 100755 index 2f91b9d2..00000000 --- a/PALOALTO/VA/DEV/.meta_Filtering +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1438257228191 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438257228175 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/DEV/.meta_Security b/PALOALTO/VA/DEV/.meta_Security deleted file mode 100755 index 6efb6567..00000000 --- a/PALOALTO/VA/DEV/.meta_Security +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1436428528422 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1436428528407 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/DEV/.meta_URLF b/PALOALTO/VA/DEV/.meta_URLF deleted file mode 100755 index e948821e..00000000 --- a/PALOALTO/VA/DEV/.meta_URLF +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1436349449131 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1436349449110 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/DEV/.meta_Users b/PALOALTO/VA/DEV/.meta_Users deleted file mode 100755 index 0a6c59bf..00000000 --- a/PALOALTO/VA/DEV/.meta_Users +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1436349034758 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1436349034737 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/DEV/.meta_application b/PALOALTO/VA/DEV/.meta_application deleted file mode 100755 index 2901fffa..00000000 --- a/PALOALTO/VA/DEV/.meta_application +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1436427769811 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1436427769392 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/DEV/Basic/.meta_Address b/PALOALTO/VA/DEV/Basic/.meta_Address deleted file mode 100755 index 78617743..00000000 --- a/PALOALTO/VA/DEV/Basic/.meta_Address +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1438696831129 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696831106 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/DEV/Basic/.meta_Network b/PALOALTO/VA/DEV/Basic/.meta_Network deleted file mode 100755 index 1ad3616d..00000000 --- a/PALOALTO/VA/DEV/Basic/.meta_Network +++ /dev/null @@ -1,38 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1581695718433 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1581695718427 - - - TAG - - - MODEL - VA - - - MANUFACTURER - - - TYPE - DIRECTORY - - - COMMENT - - - diff --git a/PALOALTO/VA/DEV/Basic/Address/.meta_address_group.xml b/PALOALTO/VA/DEV/Basic/Address/.meta_address_group.xml deleted file mode 100755 index 8a11a1fa..00000000 --- a/PALOALTO/VA/DEV/Basic/Address/.meta_address_group.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438701067595 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - Address Group - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/DEV/Basic/Address/.meta_address_ip_netmask.xml b/PALOALTO/VA/DEV/Basic/Address/.meta_address_ip_netmask.xml deleted file mode 100755 index ac0fe1e7..00000000 --- a/PALOALTO/VA/DEV/Basic/Address/.meta_address_ip_netmask.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438700798280 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438700798071 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - UPLOAD - - - TAG - Address Ip Netmask - - - diff --git a/PALOALTO/VA/DEV/Basic/Address/.meta_address_ip_range.xml b/PALOALTO/VA/DEV/Basic/Address/.meta_address_ip_range.xml deleted file mode 100755 index 109e75c0..00000000 --- a/PALOALTO/VA/DEV/Basic/Address/.meta_address_ip_range.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438700809061 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438700808860 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - UPLOAD - - - TAG - Address Ip Range - - - diff --git a/PALOALTO/VA/DEV/Basic/Address/address_group.xml b/PALOALTO/VA/DEV/Basic/Address/address_group.xml deleted file mode 100755 index 50f2cb6d..00000000 --- a/PALOALTO/VA/DEV/Basic/Address/address_group.xml +++ /dev/null @@ -1,93 +0,0 @@ - - - xml - false - - object_id - false - Objects|Network - /images/repository/CommandDefinition/icons/AccesIpList.png - false - 1 - Address Groups - 10000 - - false - false - true - true - true - params._order - 5 - true - - - - - address_ip_netmask - address_ip_range - - - - <address-group> -<entry name="Local"> -<static> -<member>Ip_For_nat</member> -<member>Ip_Lan_192.168.45.0</member> -</static> -</entry> -</address-group> - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address-group - -
- //address-group/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - - //entry/static/member - - - //member - @<member>(?<address>.*)</member>@ - - - - - - - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address-group/entry[@name='{$params.object_id}'] - - <static> -{foreach $params.address as $addr} -<member>{$addr.address}</member> -{/foreach} -</static> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address-group/entry[@name='{$params.object_id}']/static - - <static> -{foreach $params.address as $addr} -<member>{$addr.address}</member> -{/foreach} -</static> - - - diff --git a/PALOALTO/VA/DEV/Basic/Address/address_ip_netmask.xml b/PALOALTO/VA/DEV/Basic/Address/address_ip_netmask.xml deleted file mode 100755 index b66293f5..00000000 --- a/PALOALTO/VA/DEV/Basic/Address/address_ip_netmask.xml +++ /dev/null @@ -1,86 +0,0 @@ - - - xml - false - IP Netmask object - object_id - false - Objects|Network|Addresses - /images/repository/CommandDefinition/icons/Network.png - true - 1 - IP Netmask - 50 - - false - false - true - true - true - params._order - 5 - true - - - - - - <result> - <address> - <entry name="Address_VLAN-20-IP"> - <ip-netmask>10.101.101.254/24</ip-netmask> - </entry> - <entry name="EES7"> - <ip-netmask>7.7.70.7/16</ip-netmask> - </entry> - </address> -</result> - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - - <ip-netmask>{$params.address}/{$params.masklen}</ip-netmask> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}']/ip-netmask - - <ip-netmask>{$params.address}/{$params.masklen}</ip-netmask> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - - - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address - -
- //address/entry -
- - - @name="(?<object_id>.*)"@ - //entry/@name - - - @<ip-netmask>(?<address>[^/]+)/(?<masklen>[^<]+)</ip-netmask>@ - //entry/ip-netmask - - - - - - - - diff --git a/PALOALTO/VA/DEV/Basic/Address/address_ip_range.xml b/PALOALTO/VA/DEV/Basic/Address/address_ip_range.xml deleted file mode 100755 index c02ffb18..00000000 --- a/PALOALTO/VA/DEV/Basic/Address/address_ip_range.xml +++ /dev/null @@ -1,86 +0,0 @@ - - - xml - false - IP Range object - object_id - false - Objects|Network|Addresses - /images/repository/CommandDefinition/icons/Network.png - true - 1 - IP Range - 50 - - false - false - true - true - true - params._order - 5 - true - - - - - - <result> - <address> - <entry name="Address_VLAN-20-IP"> - <ip-netmask>10.101.101.254/24</ip-netmask> - </entry> - <entry name="EES7"> - <ip-netmask>7.7.70.7/16</ip-netmask> - </entry> - </address> -</result> - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - - <ip-range>{$params.startaddress}-{$params.endaddress}</ip-range> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}']/ip-range - - <ip-range>{$params.startaddress}-{$params.endaddress}</ip-range> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - - - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address - -
- //address/entry -
- - - @name="(?<object_id>.*)"@ - //entry/@name - - - - - //entry/ip-range - @<ip-range>(?<startaddress>[^-]+)-(?<endaddress>[^<]+)</ip-range>@ - - - - - - diff --git a/PALOALTO/VA/DEV/Basic/Network/.meta_static_route.xml b/PALOALTO/VA/DEV/Basic/Network/.meta_static_route.xml deleted file mode 100755 index 8b96331f..00000000 --- a/PALOALTO/VA/DEV/Basic/Network/.meta_static_route.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1582038642789 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1581696494239 - - - TAG - - - FILE_TYPE - text - - - MODEL - VA - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/DEV/Basic/Network/.meta_virtual_router.xml b/PALOALTO/VA/DEV/Basic/Network/.meta_virtual_router.xml deleted file mode 100755 index 7d8a5daa..00000000 --- a/PALOALTO/VA/DEV/Basic/Network/.meta_virtual_router.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1581974180082 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1581695786968 - - - TAG - - - FILE_TYPE - text - - - MODEL - VA - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/DEV/Basic/Network/static_route.xml b/PALOALTO/VA/DEV/Basic/Network/static_route.xml deleted file mode 100755 index 451a1da8..00000000 --- a/PALOALTO/VA/DEV/Basic/Network/static_route.xml +++ /dev/null @@ -1,116 +0,0 @@ - - - xml - - - false - - object_id - false - Network - /images/repository/CommandDefinition/icons/web cluster.jpg - false - false - 1 - 0 - Default Static route - 700 - - false - true - true - true - params._order - 5 - - - - - - - ethernet1/1 - ethernet1/2 - ethernet1/3 - ethernet1/4 - ethernet1/5 - ethernet1/6 - ethernet1/7 - ethernet1/8 - - - - - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/network/virtual-router/entry[@name='default']/routing-table/ip/static-route - -
- //static-route/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - //entry/nexthop/ip-address - @<ip-address>(?<next_hop>.*)</ip-address>@ - - - - - - //entry/interface - @<interface>(?<interface>.*)</interface>@ - - - //entry/destination - @<destination>(?<destination>.*)</destination>@ - - - - - - - - - - - - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/network/virtual-router/entry[@name='default']/routing-table/ip/static-route/entry[@name='{$params.object_id}'] - - <nexthop> -<ip-address>{$params.next_hop}</ip-address> -</nexthop> -<interface>{$params.interface}</interface> -<destination>{$params.destination}</destination> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/network/virtual-router/entry[@name='default']/routing-table/ip/static-route/entry[@name='{$params.object_id}'] - - <nexthop> -<ip-address>{$params.next_hop}</ip-address> -</nexthop> -<interface>{$params.interface}</interface> -<destination>{$params.destination}</destination> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/network/virtual-router/entry[@name='default']/routing-table/ip/static-route/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/DEV/Basic/Network/virtual_router.xml b/PALOALTO/VA/DEV/Basic/Network/virtual_router.xml deleted file mode 100755 index d58b8806..00000000 --- a/PALOALTO/VA/DEV/Basic/Network/virtual_router.xml +++ /dev/null @@ -1,84 +0,0 @@ - - - xml - - - false - - object_id - false - Network - /images/repository/CommandDefinition/icons/web cluster.jpg - false - false - 1 - 0 - Virtual Router - 700 - - false - true - true - true - params._order - 5 - - - - - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/network/virtual-router - -
- //virtual-router/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - - - - - - - - - - - - - - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/network/virtual-router/entry[@name='{$params.object_id}'] - - <protocol> -</protocol> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/network/virtual-router/entry[@name='{$params.object_id}'] - - <protocol> -</protocol> - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/network/virtual-router/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/DEV/Security/.meta_policy_app.xml b/PALOALTO/VA/DEV/Security/.meta_policy_app.xml deleted file mode 100755 index 6a0c3253..00000000 --- a/PALOALTO/VA/DEV/Security/.meta_policy_app.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438699538419 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1436428542991 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - Security Rule - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/DEV/Security/.meta_schedule b/PALOALTO/VA/DEV/Security/.meta_schedule deleted file mode 100755 index 5ca9a440..00000000 --- a/PALOALTO/VA/DEV/Security/.meta_schedule +++ /dev/null @@ -1,37 +0,0 @@ - - - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438099677416 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1437748550847 - - - CONFIGURATION_FILTER - - - - TAG - Schedule - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/DEV/Security/policy_app.xml b/PALOALTO/VA/DEV/Security/policy_app.xml deleted file mode 100755 index 18d15024..00000000 --- a/PALOALTO/VA/DEV/Security/policy_app.xml +++ /dev/null @@ -1,345 +0,0 @@ - - - xml - true - Advanced FW policies - object_id - false - Security - /images/repository/CommandDefinition/icons/cisco asa 5500.jpg - false - 1 - Policies - 5 - - true - false - true - true - true - params._order - 5 - true - - - - -
Source
- - - zone - - - - -
Source
- - - address_ip_netmask - address_ip_range - - - - -
Source
- - - user_group - - - - -
Destination
- - - zone - - - - -
Destination
- - - address_ip_netmask - address_ip_range - - - - - application - - - - - service-http - service-https - any - - - - - allow - deny - - - - - profile_group - - - - - schedule - - - - - - <rulebase> - <security> - <rules> - <entry name="Fw-Pascal"> - <from> - <member>Trust</member> - </from> - <to> - <member>untrust</member> - </to> - <source> - <member>Ip_Lan_192.168.45.0</member> - </source> - <destination> - <member>any</member> - </destination> - <source-user> - <member>any</member> - </source-user> - <category> - <member>any</member> - </category> - <application> - <member>any</member> - </application> - <service> - <member>service-http</member> - <member>service-https</member> - </service> - <hip-profiles> - <member>any</member> - </hip-profiles> - <action>allow</action> - <tag> - <member>Trust</member> - </tag> - <schedule>EES2</schedule> - <profile-setting> - <group> - <member>EESProfGrp</member> - </group> - </profile-setting> - </entry> - </rules> - </security> -</rulebase> - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules - -
- //rules/entry -
- - - //entry/profile-setting/group/member - @<member>(?<profile_grp>.*)</member>@ - - - - //entry/application/member - - - //member - @<member>(?<application>.*)</member>@ - - - - - - //entry/@name - @name="(?<object_id>.*)"@ - - - //entry/from/member - @<member>(?<zone_from>.*)</member>@ - - - //entry/to/member - @<member>(?<zone_to>.*)</member>@ - - - //entry/source/member - @<member>(?<src_address>.*)</member>@ - - - //entry/destination/member - @<member>(?<dst_address>.*)</member>@ - - - //entry/action - @<action>(?<action>.*)</action>@ - - - - //entry/source-user - - - //member - @<member>(?<user>.*)</member>@ - - - - - - //entry/schedule - @<schedule>(?<schedule>.*)</schedule>@ - - - - //entry/service/member - - - //member - @<member>(?<service>.*)</member>@ - - - - - - - - - - - - - - - - {if !empty($params._prev)} -type=config&action=move&where=after&dst={urlencode url=$params._prev} -{elseif !empty($params._next)} -type=config&action=move&where=before&dst={urlencode url=$params._next} -{else} -type=config&action=edit -{/if} - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - - {if empty($params._prev) && empty($params._next)} -<entry name="{$params.object_id}"> -<from> -<member>{$params.zone_from}</member> -</from> -<to> -<member>{$params.zone_to}</member> -</to> -<source> -<member>{$params.src_address}</member> -</source> -<destination> -<member>{$params.dst_address}</member> -</destination> -<source-user> -<member>any</member> -</source-user> -<category> -<member>any</member> -</category> -<application> -{foreach $params.application as $app} -<member>{$app.application}</member> -{/foreach} -</application> -<service> -{foreach $params.services as $srv} -<member>{$srv.service}</member> -{/foreach} -</service> -<hip-profiles> -<member>any</member> -</hip-profiles> -<action>{$params.action}</action> -{if !empty($params.profile_grp)} -<profile-setting> -<group> -<member>{$params.profile_grp}</member> -</group> -</profile-setting> -{/if} -{if !empty($params.schedule)} -<schedule>{$params.schedule}</schedule> -{/if} -</entry> -{/if} - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - - <from> -<member>{$params.zone_from}</member> -</from> -<to> -<member>{$params.zone_to}</member> -</to> -<source> -<member>{$params.src_address}</member> -</source> -<destination> -<member>{$params.dst_address}</member> -</destination> -<source-user> -<member>any</member> -</source-user> -<category> -<member>any</member> -</category> -<application> -{foreach $params.application as $app} -<member>{$app.application}</member> -{/foreach} -</application> -<service> -{foreach $params.services as $srv} -<member>{$srv.service}</member> -{/foreach} -</service> -<hip-profiles> -<member>any</member> -</hip-profiles> -<action>{$params.action}</action> -{if !empty($params.profile_grp)} -<profile-setting> -<group> -<member>{$params.profile_grp}</member> -</group> -</profile-setting> -{/if} -{if !empty($params.schedule)} -<schedule>{$params.schedule}</schedule> -{/if} - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/DEV/Security/schedule b/PALOALTO/VA/DEV/Security/schedule deleted file mode 100755 index 697f79d9..00000000 --- a/PALOALTO/VA/DEV/Security/schedule +++ /dev/null @@ -1,1005 +0,0 @@ - - - xml - false - Policy Schedule - object_id - false - Objects - /images/eclipseIcons/page_obj.gif - false - 1 - schedule - 10000 - - false - false - true - true - true - params._order - 5 - - - - - daily - weekly - non-recurring - - - - - - - sunday - monday - tuesday - wednesday - thursday - friday - saturday - - -
times
- - - - - - - - -
times
- - - - - - - 00:00 - 00:15 - 00:30 - 00:45 - 01:00 - 01:15 - 01:30 - 01:45 - 02:00 - 02:15 - 02:30 - 02:45 - 03:00 - 03:15 - 03:30 - 03:45 - 04:00 - 04:15 - 04:30 - 04:45 - 05:00 - 05:15 - 05:30 - 05:45 - 06:00 - 06:15 - 06:30 - 06:45 - 07:00 - 07:15 - 07:30 - 07:45 - 08:00 - 08:15 - 08:30 - 08:45 - 09:00 - 09:15 - 09:30 - 09:45 - 10:00 - 10:15 - 10:30 - 10:45 - 11:00 - 11:15 - 11:30 - 11:45 - 12:00 - 12:15 - 12:30 - 12:45 - 13:00 - 13:15 - 13:30 - 13:45 - 14:00 - 14:15 - 14:30 - 14:45 - 15:00 - 15:15 - 15:30 - 15:45 - 16:00 - 16:15 - 16:30 - 16:45 - 17:00 - 17:15 - 17:30 - 17:45 - 18:00 - 18:15 - 18:30 - 18:45 - 19:00 - 19:15 - 19:30 - 19:45 - 20:00 - 20:15 - 20:30 - 20:45 - 21:00 - 21:15 - 21:30 - 21:45 - 22:00 - 22:15 - 22:30 - 22:45 - 23:00 - 23:15 - 23:30 - 23:45 - - - - - - -
times
- - - - - - - 00:00 - 00:15 - 00:30 - 00:45 - 01:00 - 01:15 - 01:30 - 01:45 - 02:00 - 02:15 - 02:30 - 02:45 - 03:00 - 03:15 - 03:30 - 03:45 - 04:00 - 04:15 - 04:30 - 04:45 - 05:00 - 05:15 - 05:30 - 05:45 - 06:00 - 06:15 - 06:30 - 06:45 - 07:00 - 07:15 - 07:30 - 07:45 - 08:00 - 08:15 - 08:30 - 08:45 - 09:00 - 09:15 - 09:30 - 09:45 - 10:00 - 10:15 - 10:30 - 10:45 - 11:00 - 11:15 - 11:30 - 11:45 - 12:00 - 12:15 - 12:30 - 12:45 - 13:00 - 13:15 - 13:30 - 13:45 - 14:00 - 14:15 - 14:30 - 14:45 - 15:00 - 15:15 - 15:30 - 15:45 - 16:00 - 16:15 - 16:30 - 16:45 - 17:00 - 17:15 - 17:30 - 17:45 - 18:00 - 18:15 - 18:30 - 18:45 - 19:00 - 19:15 - 19:30 - 19:45 - 20:00 - 20:15 - 20:30 - 20:45 - 21:00 - 21:15 - 21:30 - 21:45 - 22:00 - 22:15 - 22:30 - 22:45 - 23:00 - 23:15 - 23:30 - 23:45 - - - - - 00:00 - 00:15 - 00:30 - 00:45 - 01:00 - 01:15 - 01:30 - 01:45 - 02:00 - 02:15 - 02:30 - 02:45 - 03:00 - 03:15 - 03:30 - 03:45 - 04:00 - 04:15 - 04:30 - 04:45 - 05:00 - 05:15 - 05:30 - 05:45 - 06:00 - 06:15 - 06:30 - 06:45 - 07:00 - 07:15 - 07:30 - 07:45 - 08:00 - 08:15 - 08:30 - 08:45 - 09:00 - 09:15 - 09:30 - 09:45 - 10:00 - 10:15 - 10:30 - 10:45 - 11:00 - 11:15 - 11:30 - 11:45 - 12:00 - 12:15 - 12:30 - 12:45 - 13:00 - 13:15 - 13:30 - 13:45 - 14:00 - 14:15 - 14:30 - 14:45 - 15:00 - 15:15 - 15:30 - 15:45 - 16:00 - 16:15 - 16:30 - 16:45 - 17:00 - 17:15 - 17:30 - 17:45 - 18:00 - 18:15 - 18:30 - 18:45 - 19:00 - 19:15 - 19:30 - 19:45 - 20:00 - 20:15 - 20:30 - 20:45 - 21:00 - 21:15 - 21:30 - 21:45 - 22:00 - 22:15 - 22:30 - 22:45 - 23:00 - 23:15 - 23:30 - 23:45 - - -
times
- - - - - 00:00 - 00:15 - 00:30 - 00:45 - 01:00 - 01:15 - 01:30 - 01:45 - 02:00 - 02:15 - 02:30 - 02:45 - 03:00 - 03:15 - 03:30 - 03:45 - 04:00 - 04:15 - 04:30 - 04:45 - 05:00 - 05:15 - 05:30 - 05:45 - 06:00 - 06:15 - 06:30 - 06:45 - 07:00 - 07:15 - 07:30 - 07:45 - 08:00 - 08:15 - 08:30 - 08:45 - 09:00 - 09:15 - 09:30 - 09:45 - 10:00 - 10:15 - 10:30 - 10:45 - 11:00 - 11:15 - 11:30 - 11:45 - 12:00 - 12:15 - 12:30 - 12:45 - 13:00 - 13:15 - 13:30 - 13:45 - 14:00 - 14:15 - 14:30 - 14:45 - 15:00 - 15:15 - 15:30 - 15:45 - 16:00 - 16:15 - 16:30 - 16:45 - 17:00 - 17:15 - 17:30 - 17:45 - 18:00 - 18:15 - 18:30 - 18:45 - 19:00 - 19:15 - 19:30 - 19:45 - 20:00 - 20:15 - 20:30 - 20:45 - 21:00 - 21:15 - 21:30 - 21:45 - 22:00 - 22:15 - 22:30 - 22:45 - 23:00 - 23:15 - 23:30 - 23:45 - - -
times
- - - - - 00:00 - 00:15 - 00:30 - 00:45 - 01:00 - 01:15 - 01:30 - 01:45 - 02:00 - 02:15 - 02:30 - 02:45 - 03:00 - 03:15 - 03:30 - 03:45 - 04:00 - 04:15 - 04:30 - 04:45 - 05:00 - 05:15 - 05:30 - 05:45 - 06:00 - 06:15 - 06:30 - 06:45 - 07:00 - 07:15 - 07:30 - 07:45 - 08:00 - 08:15 - 08:30 - 08:45 - 09:00 - 09:15 - 09:30 - 09:45 - 10:00 - 10:15 - 10:30 - 10:45 - 11:00 - 11:15 - 11:30 - 11:45 - 12:00 - 12:15 - 12:30 - 12:45 - 13:00 - 13:15 - 13:30 - 13:45 - 14:00 - 14:15 - 14:30 - 14:45 - 15:00 - 15:15 - 15:30 - 15:45 - 16:00 - 16:15 - 16:30 - 16:45 - 17:00 - 17:15 - 17:30 - 17:45 - 18:00 - 18:15 - 18:30 - 18:45 - 19:00 - 19:15 - 19:30 - 19:45 - 20:00 - 20:15 - 20:30 - 20:45 - 21:00 - 21:15 - 21:30 - 21:45 - 22:00 - 22:15 - 22:30 - 22:45 - 23:00 - 23:15 - 23:30 - 23:45 - - -
times
- - - - - - -
times_monday
- - - - -
times_monday
- - - - -
times_tuesday
- - - - -
times_tuesday
- - - - -
times_wednesday
- - - - -
times_wednesday
- - - - -
times_thursday
- - - - -
times_thursday
- - - - -
times_friday
- - - - -
times_friday
- - - - -
times_saturday
- - - - -
times_saturday
- - - - -
times_sunday
- - - - -
times_sunday
- - - - -
times_nr
- - - - -
times_nr
- - - - -
times_nr
- - - - -
times_nr
- - - - set schedule <name> - { - non-recurring <value> | - recurring - { - daily <value> | - weekly {friday | monday | saturday | sunday | thursday | tuesday | - wednesday} <value> - } -} - -<name> — Schedule to configure -+ non-recurring — Non-recurring date-time range specification (YYYY/MM/DD@hh:mm-YYYY/MM/DD@hh:mm; e.g. 2006/08/01@10:00-2007/12/31@23:59), or list of values enclosed in [ ] - -> recurring — Recurring period - + daily — Daily time range specification (hh:mm-hh:mm; e.g. 10:00-23:59), or list of values enclosed in [ ] - > weekly — Week day and time range specification (hh:mm-hh:mm; e.g. 10:00-23:59), or list of values enclosed in [ ] - - - <schedule> - <entry name="EES"> - <recurring> - <daily> - <member>01:00-02:00</member> - <member>12:00-13:00</member> - </daily> - </recurring> - </entry> - <entry name="EES2"> - <recurring> - <weekly> - <monday> - <member>01:15-00:45</member> - </monday> - <monday> - <member>00:00-00:15</member> - </monday> - <thursday> - <member>03:15-21:45</member> - </thursday> - </weekly> - </recurring> - </entry> - <entry name="EES3"> - <non-recurring> - <member>2015/07/29@02:00-2015/07/30@23:15</member> - <member>2016/07/19@00:00-2017/02/28@12:00</member> - </non-recurring> - </entry> - </schedule> - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/schedule/entry[@name='{$params.object_id}'] - - {if $params.recurrence == "daily"} -<recurring> -<daily> -{foreach $params.times as $t} -<member>{$t.start_time}-{$t.end_time}</member> -{/foreach} -</daily> -</recurring> -{elseif $params.recurrence == "weekly"} -<recurring> -<weekly> -{$i.monday=0} -{$i.tuesday=0} -{$i.wednesday=0} -{$i.thursday=0} -{$i.friday=0} -{$i.saturday=0} -{$i.sunday=0} -{foreach $params.times as $t} -{$day=$t.day_of_the_week} -{$index=$i.$day} -{$w.$day.$index.start_time=$t.start_time} -{$w.$day.$index.end_time=$t.end_time} -{$i.$day=$index+1} -{/foreach} -{foreach $w as $day => $tl} -<{$day}> -{foreach $tl as $t} -<member>{$t.start_time}-{$t.end_time}</member> -{/foreach} -</{$day}> -{/foreach} -</weekly> -</recurring> -{else} -<non-recurring> -{foreach $params.times as $t} -<member>{$t.start_date}@{$t.start_time}-{$t.end_date}@{$t.end_time}</member> -{/foreach} -</non-recurring> -{/if} - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/schedule - -
- //schedule/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - //entry/recurring/daily - @<(?<recurrence>[^>]+)>@ - - - - //entry/recurring/daily/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - //entry/recurring/weekly - @<(?<recurrence>[^>/]+)/?>@ - - - - //entry/recurring/weekly/monday/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - - //entry/recurring/weekly/tuesday/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - - //entry/recurring/weekly/wednesday/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - - //entry/recurring/weekly/thursday/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - - //entry/recurring/weekly/friday/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - - //entry/recurring/weekly/saturday/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - - //entry/recurring/weekly/sunday/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - //entry/non-recurring - @<(?<recurrence>[^>]+)>@ - - - - //entry/non-recurring/member - - - //member - @<member>(?<start_date>.*)\@(?<start_time>.*)-(?<end_date>.*)\@(?<end_time>.*)</member>@ - - - - - - - {assign var="i" value=0} -{foreach $params.times_monday as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.day_of_the_week" value="monday"} -{assign var="i" value=$i+1} -{/foreach} -{foreach $params.times_tuesday as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.day_of_the_week" value="tuesday"} -{assign var="i" value=$i+1} -{/foreach} -{foreach $params.times_wednesday as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.day_of_the_week" value="wednesday"} -{assign var="i" value=$i+1} -{/foreach} -{foreach $params.times_thursday as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.day_of_the_week" value="thursday"} -{assign var="i" value=$i+1} -{/foreach} -{foreach $params.times_friday as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.day_of_the_week" value="friday"} -{assign var="i" value=$i+1} -{/foreach} -{foreach $params.times_saturday as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.day_of_the_week" value="saturday"} -{assign var="i" value=$i+1} -{/foreach} -{foreach $params.times_sunday as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.day_of_the_week" value="sunday"} -{assign var="i" value=$i+1} -{/foreach} -{foreach $params.times_nr as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.start_date" value=$t.start_date} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.end_date" value=$t.end_date} -{assign var="i" value=$i+1} -{/foreach} - - - type=config&action=edit - - {if $params.recurrence == "non-recurring"} -/config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/schedule/entry[@name='{$params.object_id}']/non-recurring -{else} -/config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/schedule/entry[@name='{$params.object_id}']/recurring -{/if} - - {if $params.recurrence == "daily"} -<recurring> -<daily> -{foreach $params.times as $t} -<member>{$t.start_time}-{$t.end_time}</member> -{/foreach} -</daily> -</recurring> -{elseif $params.recurrence == "weekly"} -<recurring> -<weekly> -{$i.monday=0} -{$i.tuesday=0} -{$i.wednesday=0} -{$i.thursday=0} -{$i.friday=0} -{$i.saturday=0} -{$i.sunday=0} -{foreach $params.times as $t} -{$day=$t.day_of_the_week} -{$index=$i.$day} -{$w.$day.$index.start_time=$t.start_time} -{$w.$day.$index.end_time=$t.end_time} -{$i.$day=$index+1} -{/foreach} -{foreach $w as $day => $tl} -<{$day}> -{foreach $tl as $t} -<member>{$t.start_time}-{$t.end_time}</member> -{/foreach} -</{$day}> -{/foreach} -</weekly> -</recurring> -{else} -<non-recurring> -{foreach $params.times as $t} -<member>{$t.start_date}@{$t.start_time}-{$t.end_date}@{$t.end_time}</member> -{/foreach} -</non-recurring> -{/if} - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/schedule/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/DEV/URLF/.meta_url_categories.xml b/PALOALTO/VA/DEV/URLF/.meta_url_categories.xml deleted file mode 100755 index 2d06bf35..00000000 --- a/PALOALTO/VA/DEV/URLF/.meta_url_categories.xml +++ /dev/null @@ -1,39 +0,0 @@ - - - - - DATE_MODIFICATION - 1588580702612 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1588580702605 - - - MODEL - 134 - - - TAG - - - FILE_TYPE - text - - - MANUFACTURER - 28 - - - TYPE - FILE - - - COMMENT - - - diff --git a/PALOALTO/VA/DEV/URLF/.meta_urlf_user_profile.xml b/PALOALTO/VA/DEV/URLF/.meta_urlf_user_profile.xml deleted file mode 100755 index 014c81f1..00000000 --- a/PALOALTO/VA/DEV/URLF/.meta_urlf_user_profile.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438684125418 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1436538100101 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - URL Filtering Profile - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/DEV/URLF/url_categories.xml b/PALOALTO/VA/DEV/URLF/url_categories.xml deleted file mode 100755 index ff352479..00000000 --- a/PALOALTO/VA/DEV/URLF/url_categories.xml +++ /dev/null @@ -1,56 +0,0 @@ - - - /images/repository/CommandDefinition/icons/longreach cpe.jpg - Predifined URL Categories - object_id - - 10 - 0 - xml - - - false - false - true - 0 - - URL Categories - Security Options - false - 1 - false - true - true - true - params._order - - - - - - <mgt-config><users><entry name="admin"><phash>fnRL/G5lXVMug</phash><permissions><role-based><superuser>yes</superuser></role-based></permissions></entry></users> -</mgt-config> - - - - type=config&action=get - -
- @^\s \s*$@ -
- - - - @name="(?<object_id>.*)"@ - - - - /config/predefined/url-categories - - - - - - - - diff --git a/PALOALTO/VA/DEV/URLF/urlf_user_profile.xml b/PALOALTO/VA/DEV/URLF/urlf_user_profile.xml deleted file mode 100755 index 7c99fa6a..00000000 --- a/PALOALTO/VA/DEV/URLF/urlf_user_profile.xml +++ /dev/null @@ -1,580 +0,0 @@ - - - xml - false - - object_id - false - Objects|Security Profiles - /images/repository/CommandDefinition/icons/lan to lan.jpg - false - 1 - URL Filtering Profile - 5 - - false - false - true - true - true - params._order - 5 - true - - - - - allow - block - - - - - no - yes - - - - - no - yes - - - - - no - yes - - - - - - abortion - abused-drugs - adult - alcohol-and-tobacco - auctions - business-and-economy - computer-and-internet-info - content-delivery-networks - dating - educational-institutions - entertainment-and-arts - financial-services - gambling - games - government - hacking - health-and-medicine - home-and-garden - hunting-and-fishing - internet-communications-and-telephony - internet-portals - job-search - legal - malware - military - motor-vehicles - music - news - not-resolved - nudity - online-storage-and-backup - parked - peer-to-peer - personal-sites-and-blogs - philosophy-and-political-advocacy - phishing - private-ip-addresses - proxy-avoidance-and-anonymizers - questionable - real-estate - recreation-and-hobbies - reference-and-research - religion - search-engines - sex-education - shareware-and-freeware - shopping - social-networking - society - sports - stock-advice-and-tools - streaming-media - swimsuits-and-intimate-apparel - training-and-tools - translation - travel - unknown - weapons - web-advertisements - web-based-email - web-hosting - - - params.block.0.member - params.continue.0.member - - - - - abortion - abused-drugs - adult - alcohol-and-tobacco - auctions - business-and-economy - computer-and-internet-info - content-delivery-networks - dating - educational-institutions - entertainment-and-arts - financial-services - gambling - games - government - hacking - health-and-medicine - home-and-garden - hunting-and-fishing - internet-communications-and-telephony - internet-portals - job-search - legal - malware - military - motor-vehicles - music - news - not-resolved - nudity - online-storage-and-backup - parked - peer-to-peer - personal-sites-and-blogs - philosophy-and-political-advocacy - phishing - private-ip-addresses - proxy-avoidance-and-anonymizers - questionable - real-estate - recreation-and-hobbies - reference-and-research - religion - search-engines - sex-education - shareware-and-freeware - shopping - social-networking - society - sports - stock-advice-and-tools - streaming-media - swimsuits-and-intimate-apparel - training-and-tools - translation - travel - unknown - weapons - web-advertisements - web-based-email - web-hosting - - - params.alert.0.member - params.continue.0.member - - - - - abortion - abused-drugs - adult - alcohol-and-tobacco - auctions - business-and-economy - computer-and-internet-info - content-delivery-networks - dating - educational-institutions - entertainment-and-arts - financial-services - gambling - games - government - hacking - health-and-medicine - home-and-garden - hunting-and-fishing - internet-communications-and-telephony - internet-portals - job-search - legal - malware - military - motor-vehicles - music - news - not-resolved - nudity - online-storage-and-backup - parked - peer-to-peer - personal-sites-and-blogs - philosophy-and-political-advocacy - phishing - private-ip-addresses - proxy-avoidance-and-anonymizers - questionable - real-estate - recreation-and-hobbies - reference-and-research - religion - search-engines - sex-education - shareware-and-freeware - shopping - social-networking - society - sports - stock-advice-and-tools - streaming-media - swimsuits-and-intimate-apparel - training-and-tools - translation - travel - unknown - weapons - web-advertisements - web-based-email - web-hosting - - - params.block.0.member - params.alert.0.member - - - - - - - alert - block - continue - override - - - - <url-filtering> - <entry name="USER_URL_Config_VM-vFW"> - <license-expired>allow</license-expired> - <enable-container-page>yes</enable-container-page> - <dynamic-url>yes</dynamic-url> - <log-container-page-only>yes</log-container-page-only> - <description>VM &gt; vFW</description> - <alert> - <member>abortion</member> - <member>adult-and-pornography</member> - <member>alcohol-and-tobacco</member> - <member>auctions</member> - <member>cheating</member> - <member>computer-and-internet-security</member> - <member>content-delivery-networks</member> - <member>cult-and-occult</member> - <member>dating</member> - <member>dead-sites</member> - <member>dynamically-generated-content</member> - <member>educational-institutions</member> - <member>entertainment-and-arts</member> - <member>fashion-and-beauty</member> - <member>financial-services</member> - <member>games</member> - <member>government</member> - <member>gross</member> - <member>hacking</member> - <member>hate-and-racism</member> - <member>health-and-medicine</member> - <member>home-and-garden</member> - <member>hunting-and-fishing</member> - <member>illegal</member> - <member>image-and-video-search</member> - <member>individual-stock-advice-and-tools</member> - <member>internet-communications</member> - <member>internet-portals</member> - <member>job-search</member> - <member>kids</member> - <member>legal</member> - <member>local-information</member> - <member>marijuana</member> - <member>military</member> - <member>motor-vehicles</member> - <member>news-and-media</member> - <member>not-resolved</member> - <member>nudity</member> - <member>online-gambling</member> - <member>online-greeting-cards</member> - <member>online-music</member> - <member>online-personal-storage</member> - <member>pay-to-surf</member> - <member>personal-sites-and-blogs</member> - <member>philosophy-and-political-advocacy</member> - <member>private-ip-addresses</member> - <member>questionable</member> - <member>real-estate</member> - <member>recreation-and-hobbies</member> - <member>reference-and-research</member> - <member>religion</member> - <member>search-engines</member> - <member>sex-education</member> - <member>shareware-and-freeware</member> - <member>shopping</member> - <member>social-networking</member> - <member>society</member> - <member>sports</member> - <member>streaming-media</member> - <member>swimsuits-and-intimate-apparel</member> - <member>training-and-tools</member> - <member>translation</member> - <member>travel</member> - <member>unknown</member> - <member>violence</member> - <member>weapons</member> - <member>web-advertisements</member> - <member>web-based-email</member> - <member>web-hosting</member> - </alert> - <block> - <member>abused-drugs</member> - <member>bot-nets</member> - <member>confirmed-spam-sources</member> - <member>keyloggers-and-monitoring</member> - <member>malware-sites</member> - <member>open-http-proxies</member> - <member>parked-domains</member> - <member>peer-to-peer</member> - <member>phishing-and-other-frauds</member> - <member>proxy-avoidance-and-anonymizers</member> - <member>spam-urls</member> - <member>spyware-and-adware</member> - <member>unconfirmed-spam-sources</member> - </block> - <continue> - <member>business-and-economy</member> - </continue> - <block-list> - <member>www.bad.com</member> - <member>worth.com</member> - </block-list> - <allow-list> - <member>www.good.com</member> - <member>great.com</member> - </allow-list> - <action>block</action> - </entry> -</url-filtering> - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/url-filtering - -
- //url-filtering/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - - //entry/dynamic-url - @<dynamic-url>(?<dynamic_url>[^<]+)</dynamic-url>@ - - - //entry/enable-container-page - @<enable-container-page>(?<enable_container_page>[^<]+)</enable-container-page>@ - - - - //entry/license-expired - @<license-expired>(?<license_expired>[^<]+)</license-expired>@ - - - //entry/log-container-page-only - @<log-container-page-only>(?<log_container_page_only>[^<]+)</log-container-page-only>@ - - - //entry/description - @<description>(?<description>[^<]+)</description>@ - - - //entry/action - @<action>(?<action>[^<]+)</action>@ - - - - //entry/allow-list/member - - - //member - @<member>(?<url>[^<]+)</member>@ - - - - - - - //entry/block-list/member - - - //member - @<member>(?<url>[^<]+)</member>@ - - - - - - - - - //entry/continue/member - - - //member - @<member>(?<member>[^<]+)</member>@ - - - - - - - //entry/block/member - - - //member - @<member>(?<member>[^<]+)</member>@ - - - - - - - //entry/alert/member - - - //member - @<member>(?<member>[^<]+)</member>@ - - - - - - - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/url-filtering - - <entry name='{$params.object_id}'> -{if !empty($params.description) } -<description>{$params.description}</description> -{/if} -{if !empty($params.alert) } -<alert> -{foreach $params.alert as $alert} -<member>{$alert.member}</member> -{/foreach} -</alert> -{/if} -{if !empty($params.block) } -<block> -{foreach $params.block as $block} -<member>{$block.member}</member> -{/foreach} -</block> -{/if} -{if !empty($params.continue) } -<continue> -{foreach $params.continue as $continue} -<member>{$continue.member}</member> -{/foreach} -</continue> -{/if} -{if !empty($params.block_list) } -<block-list> -{foreach $params.block_list as $block_list} -<member>{$block_list.url}</member> -{/foreach} -</block-list> -{/if} -{if !empty($params.allow_list) } -<allow-list> -{foreach $params.allow_list as $allow_list} -<member>{$allow_list.url}</member> -{/foreach} -</allow-list> -{/if} -<action>{$params.action}</action> -</entry> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/url-filtering/entry[@name='{$params.object_id}'] - - <entry name='{$params.object_id}'> -{if !empty($params.description) } -<description>{$params.description}</description> -{/if} -{if !empty($params.alert) } -<alert> -{foreach $params.alert as $alert} -<member>{$alert.member}</member> -{/foreach} -</alert> -{/if} -{if !empty($params.block) } -<block> -{foreach $params.block as $block} -<member>{$block.member}</member> -{/foreach} -</block> -{/if} -{if !empty($params.continue) } -<continue> -{foreach $params.continue as $continue} -<member>{$continue.member}</member> -{/foreach} -</continue> -{/if} -{if !empty($params.block_list) } -<block-list> -{foreach $params.block_list as $block_list} -<member>{$block_list.url}</member> -{/foreach} -</block-list> -{/if} -{if !empty($params.allow_list) } -<allow-list> -{foreach $params.allow_list as $allow_list} -<member>{$allow_list.url}</member> -{/foreach} -</allow-list> -{/if} -<action>{$params.action}</action> -</entry> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/url-filtering/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/DEV/Users/.meta_user_group.xml b/PALOALTO/VA/DEV/Users/.meta_user_group.xml deleted file mode 100755 index b2f3cd20..00000000 --- a/PALOALTO/VA/DEV/Users/.meta_user_group.xml +++ /dev/null @@ -1,37 +0,0 @@ - - - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438689006011 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438249821038 - - - CONFIGURATION_FILTER - - - - TAG - User Group - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/DEV/Users/.meta_users.xml b/PALOALTO/VA/DEV/Users/.meta_users.xml deleted file mode 100755 index 75ed546d..00000000 --- a/PALOALTO/VA/DEV/Users/.meta_users.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438683646704 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1436349038573 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - users - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/DEV/Users/user_group.xml b/PALOALTO/VA/DEV/Users/user_group.xml deleted file mode 100755 index 93c3a810..00000000 --- a/PALOALTO/VA/DEV/Users/user_group.xml +++ /dev/null @@ -1,108 +0,0 @@ - - - xml - false - - object_id - false - Device|Local User Database - /images/repository/CommandDefinition/icons/man_woman.jpg - false - 1 - User Group - 10000 - - false - false - true - true - true - params._order - 5 - - - - - users - - - - <config version="6.0.0" urldb="paloaltonetworks"> -... - <shared> -... - <local-user-database> -... - <user-group> - <entry name="tmt"> - <user> - <member>EES</member> - <member>ydu</member> - </user> - </entry> - </user-group> - </local-user-database> - </shared> -... -</config> - - - - type=config&action=show - /config/shared/local-user-database/user-group - -
- //user-group/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - - //entry/user/member - - - //member - @<member>(?<user>.*)</member>@ - - - - - - - - - - type=config&action=set - - /config/shared/local-user-database/user-group/entry[@name='{$params.object_id}'] - - <user> -{foreach $params.users as $user} -<member>{$user.user}</member> -{/foreach} -</user> - - - - type=config&action=edit - - /config/shared/local-user-database/user-group/entry[@name='{$params.object_id}']/user - - <user> -{foreach $params.users as $user} -<member>{$user.user}</member> -{/foreach} -</user> - - - type=config&action=delete - - /config/shared/local-user-database/user-group/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/DEV/Users/users.xml b/PALOALTO/VA/DEV/Users/users.xml deleted file mode 100755 index ae83890a..00000000 --- a/PALOALTO/VA/DEV/Users/users.xml +++ /dev/null @@ -1,81 +0,0 @@ - - - xml - false - Users management - object_id - false - Device|Local User Database - /images/repository/CommandDefinition/icons/androgenous person.jpg - true - 10 - Users - 100 - - false - false - true - true - true - params._order - 5 - true - - - - - <mgt-config> - <users> - <entry name="admin"> - <phash>fnRL/G5lXVMug</phash> - <permissions> - <role-based> - <superuser>yes</superuser> - </role-based> - </permissions> - </entry> - </users> -</mgt-config> - - - - type=config&action=set - - /config/shared/local-user-database/user/entry[@name='{$params.object_id}'] - - <phash>{$params.password}</phash> - - - - - type=config&action=delete - - /config/shared/local-user-database/user/entry[@name='{$params.object_id}'] - - - - - - type=config&action=show - /config/shared/local-user-database/user - -
- //user/entry -
- - - @name="(?<object_id>.*)"@ - //entry/@name - - - //phash - @<phash>(?<password>.*)</phash@ - - - - - - - - - diff --git a/PALOALTO/VA/DEV/application/.meta_application.xml b/PALOALTO/VA/DEV/application/.meta_application.xml deleted file mode 100755 index 67227d86..00000000 --- a/PALOALTO/VA/DEV/application/.meta_application.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438855313470 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1436427784641 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - application - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/DEV/application/.meta_application_a_i.xml b/PALOALTO/VA/DEV/application/.meta_application_a_i.xml deleted file mode 100755 index 5245119d..00000000 --- a/PALOALTO/VA/DEV/application/.meta_application_a_i.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1436511980785 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1436432691351 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - application - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/DEV/application/application_0_9.xml b/PALOALTO/VA/DEV/application/application_0_9.xml deleted file mode 100755 index 2448de7b..00000000 --- a/PALOALTO/VA/DEV/application/application_0_9.xml +++ /dev/null @@ -1,56 +0,0 @@ - - - /images/repository/CommandDefinition/icons/longreach cpe.jpg - Predifined application - object_id - - 10 - 0 - xml - - - false - false - true - 0 - - Predifined application - Security Options - false - 1 - true - true - true - true - params._order - - - - - - <mgt-config><users><entry name="admin"><phash>fnRL/G5lXVMug</phash><permissions><role-based><superuser>yes</superuser></role-based></permissions></entry></users> -</mgt-config> - - - - type=config&action=get - -
- @^\s \s*$@ -
- - - - @name="(?<object_id>[0-9].*)"@ - - - - /config/predefined/application - - - - - - - - diff --git a/PALOALTO/VA/DEV/application/application_a_i.xml b/PALOALTO/VA/DEV/application/application_a_i.xml deleted file mode 100755 index 37774339..00000000 --- a/PALOALTO/VA/DEV/application/application_a_i.xml +++ /dev/null @@ -1,62 +0,0 @@ - - - xml - false - Predifined application - object_id - false - Security Options - /images/repository/CommandDefinition/icons/longreach cpe.jpg - true - 1 - Application - 10 - - true - false - true - true - true - params._order - 5 - true - - - - <mgt-config> - <users> - <entry name="admin"> - <phash>fnRL/G5lXVMug</phash> - <permissions> - <role-based> - <superuser>yes</superuser> - </role-based> - </permissions> - </entry> - </users> -</mgt-config> - - - - - - - type=config&action=get - /config/predefined/application - -
- //application/entry -
- - - @name="(?<object_id>zo.*?)"@ - //entry/@name - - - - - - - - - diff --git a/PALOALTO/VA/.meta_multivendorSecurityPolicy.xml b/PALOALTO/VA/Orchestration/.meta_multivendorSecurityPolicy.xml similarity index 100% rename from PALOALTO/VA/.meta_multivendorSecurityPolicy.xml rename to PALOALTO/VA/Orchestration/.meta_multivendorSecurityPolicy.xml diff --git a/PALOALTO/VA/DEV/application/.meta_application_0_9.xml b/PALOALTO/VA/Orchestration/.meta_simple_firewall.xml similarity index 91% rename from PALOALTO/VA/DEV/application/.meta_application_0_9.xml rename to PALOALTO/VA/Orchestration/.meta_simple_firewall.xml index 7ac63555..412afd75 100755 --- a/PALOALTO/VA/DEV/application/.meta_application_0_9.xml +++ b/PALOALTO/VA/Orchestration/.meta_simple_firewall.xml @@ -3,7 +3,7 @@ DATE_MODIFICATION - 1588580763749 + 1608127404680 REPOSITORY @@ -11,7 +11,7 @@ DATE_CREATION - 1588580763739 + 1608127404676 MODEL diff --git a/PALOALTO/VA/multivendorSecurityPolicy.xml b/PALOALTO/VA/Orchestration/multivendorSecurityPolicy.xml similarity index 100% rename from PALOALTO/VA/multivendorSecurityPolicy.xml rename to PALOALTO/VA/Orchestration/multivendorSecurityPolicy.xml diff --git a/PALOALTO/VA/Orchestration/simple_firewall.xml b/PALOALTO/VA/Orchestration/simple_firewall.xml new file mode 100755 index 00000000..b2e4a7cd --- /dev/null +++ b/PALOALTO/VA/Orchestration/simple_firewall.xml @@ -0,0 +1,126 @@ + + + /images/eclipseIcons/page_obj.gif + + object_id + + 10000 + 0 + xml + + + false + false + false + 0 + + simple_firewall + Orchestration|Policies + false + 1 + false + true + true + true + params._order + + + + + + Source + + + + + Source + + + 255.255.255.0 + 255.255.255.254 + 255.255.255.255 + + + + + Destination + + + + + Destination + + + 255.255.255.0 + 255.255.255.254 + 255.255.255.255 + + + + + + allow + deny + + + + + + + + +
+ @^\s \s*$@ + +
+ + + + + + + + + + + + + <from> +<member>external</member> +</from> +<to> +<member>internal</member> +</to> +<source> +<member>{$params.src_ip}/{get_mask_len mask=$params.src_mask}</member> +</source> +<destination> +<member>{$params.dst_ip}/{get_mask_len mask=$params.dst_mask}</member> +</destination> +<source-user> +<member>any</member> +</source-user> +<category> +<member>any</member> +</category> +<application> +<member>any</member> +</application> +<service> +<member>{$params.service}</member> +</service> +<hip-profiles> +<member>any</member> +</hip-profiles> +<action>{$params.action|default:'deny'}</action> + type=config&action=set + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] + + + + type=config&action=delete + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] + + + + diff --git a/PALOALTO/VA/SERVICE/.meta_Anti-Virus b/PALOALTO/VA/SERVICE/.meta_Anti-Virus index d4b81c31..43031d02 100755 --- a/PALOALTO/VA/SERVICE/.meta_Anti-Virus +++ b/PALOALTO/VA/SERVICE/.meta_Anti-Virus @@ -3,7 +3,7 @@ MODEL - Vsys + 134 DATE_MODIFICATION diff --git a/PALOALTO/VA/SERVICE/.meta_Basic b/PALOALTO/VA/SERVICE/.meta_Basic index b7a3e55e..4dd88f9c 100755 --- a/PALOALTO/VA/SERVICE/.meta_Basic +++ b/PALOALTO/VA/SERVICE/.meta_Basic @@ -3,7 +3,7 @@ MODEL - Vsys + 134 DATE_MODIFICATION diff --git a/PALOALTO/VA/SERVICE/.meta_IPSEC_VPN b/PALOALTO/VA/SERVICE/.meta_IPSEC_VPN deleted file mode 100755 index 5e4504e6..00000000 --- a/PALOALTO/VA/SERVICE/.meta_IPSEC_VPN +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1435914250052 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1435914250024 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/SERVICE/.meta_URL-Filtering b/PALOALTO/VA/SERVICE/.meta_URL-Filtering index 06efb2f2..b445df28 100755 --- a/PALOALTO/VA/SERVICE/.meta_URL-Filtering +++ b/PALOALTO/VA/SERVICE/.meta_URL-Filtering @@ -3,7 +3,7 @@ MODEL - Vsys + 134 DATE_MODIFICATION diff --git a/PALOALTO/VA/SERVICE/.meta_Vulnerability b/PALOALTO/VA/SERVICE/.meta_Vulnerability index 59d7a7b6..027f6885 100755 --- a/PALOALTO/VA/SERVICE/.meta_Vulnerability +++ b/PALOALTO/VA/SERVICE/.meta_Vulnerability @@ -3,7 +3,7 @@ MODEL - Vsys + 134 DATE_MODIFICATION diff --git a/PALOALTO/VA/SERVICE/Anti-Virus/.meta_antivirus_service.xml b/PALOALTO/VA/SERVICE/Anti-Virus/.meta_antivirus_service.xml index e51a68fb..180e3c46 100755 --- a/PALOALTO/VA/SERVICE/Anti-Virus/.meta_antivirus_service.xml +++ b/PALOALTO/VA/SERVICE/Anti-Virus/.meta_antivirus_service.xml @@ -19,7 +19,7 @@ MODEL - Vsys + 134 FILE_TYPE diff --git a/PALOALTO/VA/SERVICE/Anti-Virus/.meta_antivirus_shared_profile.xml b/PALOALTO/VA/SERVICE/Anti-Virus/.meta_antivirus_shared_profile.xml index 0f71ad5c..a6ee7eb9 100755 --- a/PALOALTO/VA/SERVICE/Anti-Virus/.meta_antivirus_shared_profile.xml +++ b/PALOALTO/VA/SERVICE/Anti-Virus/.meta_antivirus_shared_profile.xml @@ -19,7 +19,7 @@ MODEL - Vsys + 134 FILE_TYPE diff --git a/PALOALTO/VA/SERVICE/Anti-Virus/.meta_antivirus_user_profile.xml b/PALOALTO/VA/SERVICE/Anti-Virus/.meta_antivirus_user_profile.xml index f370d3ce..fd9274aa 100755 --- a/PALOALTO/VA/SERVICE/Anti-Virus/.meta_antivirus_user_profile.xml +++ b/PALOALTO/VA/SERVICE/Anti-Virus/.meta_antivirus_user_profile.xml @@ -19,7 +19,7 @@ MODEL - Vsys + 134 FILE_TYPE diff --git a/PALOALTO/VA/SERVICE/Anti-Virus/.meta_spyware_shared_profile.xml b/PALOALTO/VA/SERVICE/Anti-Virus/.meta_spyware_shared_profile.xml index cb8055a7..c482f040 100755 --- a/PALOALTO/VA/SERVICE/Anti-Virus/.meta_spyware_shared_profile.xml +++ b/PALOALTO/VA/SERVICE/Anti-Virus/.meta_spyware_shared_profile.xml @@ -19,7 +19,7 @@ MODEL - Vsys + 134 FILE_TYPE diff --git a/PALOALTO/VA/SERVICE/Basic/.meta_Address b/PALOALTO/VA/SERVICE/Basic/.meta_Address index b0bd83b6..001b9fd7 100755 --- a/PALOALTO/VA/SERVICE/Basic/.meta_Address +++ b/PALOALTO/VA/SERVICE/Basic/.meta_Address @@ -3,7 +3,7 @@ MODEL - Vsys + 134 DATE_MODIFICATION diff --git a/PALOALTO/VA/V7.0/.meta_Application b/PALOALTO/VA/SERVICE/Basic/.meta_Application similarity index 100% rename from PALOALTO/VA/V7.0/.meta_Application rename to PALOALTO/VA/SERVICE/Basic/.meta_Application diff --git a/PALOALTO/VA/.meta_V7.0 b/PALOALTO/VA/SERVICE/Basic/.meta_License similarity index 100% rename from PALOALTO/VA/.meta_V7.0 rename to PALOALTO/VA/SERVICE/Basic/.meta_License diff --git a/PALOALTO/VA/SERVICE/Basic/.meta_Network b/PALOALTO/VA/SERVICE/Basic/.meta_Network index 3af98965..66c6957a 100755 --- a/PALOALTO/VA/SERVICE/Basic/.meta_Network +++ b/PALOALTO/VA/SERVICE/Basic/.meta_Network @@ -3,7 +3,7 @@ MODEL - Vsys + 134 DATE_MODIFICATION diff --git a/PALOALTO/VA/SERVICE/Basic/.meta_Orchestration b/PALOALTO/VA/SERVICE/Basic/.meta_Orchestration index c83742fb..8364c421 100755 --- a/PALOALTO/VA/SERVICE/Basic/.meta_Orchestration +++ b/PALOALTO/VA/SERVICE/Basic/.meta_Orchestration @@ -22,7 +22,7 @@ MODEL - Vsys + 134 MANUFACTURER diff --git a/PALOALTO/VA/SERVICE/Basic/.meta_Security b/PALOALTO/VA/SERVICE/Basic/.meta_Security index 807f6aae..e4f5a0ae 100755 --- a/PALOALTO/VA/SERVICE/Basic/.meta_Security +++ b/PALOALTO/VA/SERVICE/Basic/.meta_Security @@ -3,7 +3,7 @@ MODEL - Vsys + 134 DATE_MODIFICATION diff --git a/PALOALTO/VA/V7.0/.meta_Services b/PALOALTO/VA/SERVICE/Basic/.meta_Services similarity index 88% rename from PALOALTO/VA/V7.0/.meta_Services rename to PALOALTO/VA/SERVICE/Basic/.meta_Services index d9e84080..001b9fd7 100755 --- a/PALOALTO/VA/V7.0/.meta_Services +++ b/PALOALTO/VA/SERVICE/Basic/.meta_Services @@ -3,11 +3,11 @@ MODEL - VA + 134 DATE_MODIFICATION - 1412613823108 + 1409825781332 COMMENT @@ -19,7 +19,7 @@ DATE_CREATION - 1412613823092 + 1409825781306 MANUFACTURER diff --git a/PALOALTO/VA/V7.0/.meta_System b/PALOALTO/VA/SERVICE/Basic/.meta_System similarity index 100% rename from PALOALTO/VA/V7.0/.meta_System rename to PALOALTO/VA/SERVICE/Basic/.meta_System diff --git a/PALOALTO/VA/V7.0/.meta_Users b/PALOALTO/VA/SERVICE/Basic/.meta_Users similarity index 100% rename from PALOALTO/VA/V7.0/.meta_Users rename to PALOALTO/VA/SERVICE/Basic/.meta_Users diff --git a/PALOALTO/VA/SERVICE/Basic/Address/.meta_address_ip_netmask.xml b/PALOALTO/VA/SERVICE/Basic/Address/.meta_address_ip_netmask.xml index b336c279..c82b56b5 100755 --- a/PALOALTO/VA/SERVICE/Basic/Address/.meta_address_ip_netmask.xml +++ b/PALOALTO/VA/SERVICE/Basic/Address/.meta_address_ip_netmask.xml @@ -3,7 +3,7 @@ DATE_MODIFICATION - 1594218797088 + 1607530759749 REPOSITORY @@ -11,7 +11,7 @@ DATE_CREATION - 1594218797082 + 1607530759743 MODEL diff --git a/PALOALTO/VA/V7.0/Address/.meta_dns_servers.xml b/PALOALTO/VA/SERVICE/Basic/Address/.meta_dns_servers.xml similarity index 100% rename from PALOALTO/VA/V7.0/Address/.meta_dns_servers.xml rename to PALOALTO/VA/SERVICE/Basic/Address/.meta_dns_servers.xml diff --git a/PALOALTO/VA/V7.0/Address/.meta_regions.xml b/PALOALTO/VA/SERVICE/Basic/Address/.meta_regions.xml similarity index 100% rename from PALOALTO/VA/V7.0/Address/.meta_regions.xml rename to PALOALTO/VA/SERVICE/Basic/Address/.meta_regions.xml diff --git a/PALOALTO/VA/SERVICE/Basic/Address/address_group.xml b/PALOALTO/VA/SERVICE/Basic/Address/address_group.xml index 6edc99a2..018457f1 100755 --- a/PALOALTO/VA/SERVICE/Basic/Address/address_group.xml +++ b/PALOALTO/VA/SERVICE/Basic/Address/address_group.xml @@ -1,77 +1,65 @@ - - - /images/eclipseIcons/page_obj.gif - - object_id - - 100 - 0 + + xml false + + object_id false - false - 0 - - Address Groups Objects + /images/eclipseIcons/page_obj.gif + false false 1 + 0 + Address Groups + 100 + false true true true params._order - - - - + 5 + true + + + address_ip_netmask address_ip_range - - + type=config&action=show + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address-group
- @^\s \s*$@ //address-group/entry
- - @name="(?<object_id>.*)"@ //entry/@name + @name="(?<object_id>.*)"@ + //entry/static/member - - @<member>(?<address>.*)</member>@ //member + @<member>(?<address>.*)</member>@ - @^\s \s*$@ - - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address-group + - - - - - - diff --git a/PALOALTO/VA/SERVICE/Basic/Address/address_ip_netmask.xml b/PALOALTO/VA/SERVICE/Basic/Address/address_ip_netmask.xml index c203bbe9..1c900c00 100755 --- a/PALOALTO/VA/SERVICE/Basic/Address/address_ip_netmask.xml +++ b/PALOALTO/VA/SERVICE/Basic/Address/address_ip_netmask.xml @@ -30,9 +30,16 @@ - <result><address><entry name="Address_VLAN-20-IP"><ip-netmask>10.101.101.254/24</ip-netmask></entry><entry name="EES7"><ip-netmask>7.7.70.7/16</ip-netmask></entry></address> -</result> - + <result> +<address> +<entry name="Address_VLAN-20-IP"> +<ip-netmask>10.101.101.254/24</ip-netmask> +</entry> +<entry name="EES7"> +<ip-netmask>7.7.70.7/16</ip-netmask> +</entry> +</address> +</result> type=config&action=show @@ -44,42 +51,33 @@ - @name="(?<object_id>.*)"@ + @name="(?<object_id>.*)"@ //entry/@name - @<ip-netmask>(?<address>[^/]+)/(?<masklen>[^<]+)</ip-netmask>@ + @<ip-netmask>(?<address>[^/]+)/(?<masklen>[^<]+)</ip-netmask>@ //entry/ip-netmask - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address - <ip-netmask>{$params.address}/{$params.masklen}</ip-netmask> - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}']/ip-netmask - + <ip-netmask>{$params.address}/{$params.masklen}</ip-netmask> + type=config&action=edit + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}']/ip-netmask - <ip-netmask>{$params.address}/{$params.masklen}</ip-netmask> - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - + <ip-netmask>{$params.address}/{$params.masklen}</ip-netmask> + type=config&action=set + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - + <!-- test --> + type=config&action=delete + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] diff --git a/PALOALTO/VA/SERVICE/Basic/Address/address_ip_range.xml b/PALOALTO/VA/SERVICE/Basic/Address/address_ip_range.xml index 43a0304e..ccd9d851 100755 --- a/PALOALTO/VA/SERVICE/Basic/Address/address_ip_range.xml +++ b/PALOALTO/VA/SERVICE/Basic/Address/address_ip_range.xml @@ -1,86 +1,89 @@ - - - /images/eclipseIcons/page_obj.gif - IP Range object - object_id - - 102 - 0 + + xml false + IP Range object + object_id false - false - 0 - - Address IP Range Objects + /images/eclipseIcons/page_obj.gif + false false 1 + 0 + Address IP Range + 102 + false true true true params._order - - - - - - - - <result><address><entry name="Address_VLAN-20-IP"><ip-netmask>10.101.101.254/24</ip-netmask></entry><entry name="EES7"><ip-netmask>7.7.70.7/16</ip-netmask></entry></address> -</result> + 5 + true + + + + + + <result> + <address> + <entry name="Address_VLAN-20-IP"> + <ip-netmask>10.101.101.254/24</ip-netmask> + </entry> + <entry name="EES7"> + <ip-netmask>7.7.70.7/16</ip-netmask> + </entry> + </address> +</result> - + + type=config&action=set + + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] + + <ip-range>{$params.startaddress}-{$params.endaddress}</ip-range> + + + + type=config&action=edit + + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}']/ip-range + + <ip-range>{$params.startaddress}-{$params.endaddress}</ip-range> + + + + type=config&action=delete + + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] + + + + + type=config&action=show + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address
- @^\s \s*$@ //address/entry
- - @name="(?<object_id>.*)"@ - //entry/@name + @name="(?<object_id>.*)"@ + //entry/@name + + - - @<ip-range>(?<startaddress>[^-]+)-(?<endaddress>[^<]+)</ip-range>@ //entry/ip-range + @<ip-range>(?<startaddress>[^-]+)-(?<endaddress>[^<]+)</ip-range>@ - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address - - - <ip-range>{$params.startaddress}-{$params.endaddress}</ip-range> - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}']/ip-range - - - - - <ip-range>{$params.startaddress}-{$params.endaddress}</ip-range> - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - - - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - + - - diff --git a/PALOALTO/VA/V7.0/Address/dns_servers.xml b/PALOALTO/VA/SERVICE/Basic/Address/dns_servers.xml similarity index 100% rename from PALOALTO/VA/V7.0/Address/dns_servers.xml rename to PALOALTO/VA/SERVICE/Basic/Address/dns_servers.xml diff --git a/PALOALTO/VA/V7.0/Address/regions.xml b/PALOALTO/VA/SERVICE/Basic/Address/regions.xml similarity index 100% rename from PALOALTO/VA/V7.0/Address/regions.xml rename to PALOALTO/VA/SERVICE/Basic/Address/regions.xml diff --git a/PALOALTO/VA/V7.0/Application/.meta_application.xml b/PALOALTO/VA/SERVICE/Basic/Application/.meta_application.xml similarity index 100% rename from PALOALTO/VA/V7.0/Application/.meta_application.xml rename to PALOALTO/VA/SERVICE/Basic/Application/.meta_application.xml diff --git a/PALOALTO/VA/DEV/application/application.xml b/PALOALTO/VA/SERVICE/Basic/Application/application.xml similarity index 100% rename from PALOALTO/VA/DEV/application/application.xml rename to PALOALTO/VA/SERVICE/Basic/Application/application.xml diff --git a/PALOALTO/VA/V7.0/License/.meta_license.xml b/PALOALTO/VA/SERVICE/Basic/License/.meta_license.xml similarity index 100% rename from PALOALTO/VA/V7.0/License/.meta_license.xml rename to PALOALTO/VA/SERVICE/Basic/License/.meta_license.xml diff --git a/PALOALTO/VA/V7.0/License/license.xml b/PALOALTO/VA/SERVICE/Basic/License/license.xml similarity index 100% rename from PALOALTO/VA/V7.0/License/license.xml rename to PALOALTO/VA/SERVICE/Basic/License/license.xml diff --git a/PALOALTO/VA/V7.0/Network/.meta_Ethernet b/PALOALTO/VA/SERVICE/Basic/Network/.meta_Ethernet similarity index 100% rename from PALOALTO/VA/V7.0/Network/.meta_Ethernet rename to PALOALTO/VA/SERVICE/Basic/Network/.meta_Ethernet diff --git a/PALOALTO/VA/.meta_V7.1 b/PALOALTO/VA/SERVICE/Basic/Network/.meta_Virtual-Wire similarity index 100% rename from PALOALTO/VA/.meta_V7.1 rename to PALOALTO/VA/SERVICE/Basic/Network/.meta_Virtual-Wire diff --git a/PALOALTO/VA/V7.1/.meta_dhcp_client.xml b/PALOALTO/VA/SERVICE/Basic/Network/.meta_dhcp_client.xml similarity index 100% rename from PALOALTO/VA/V7.1/.meta_dhcp_client.xml rename to PALOALTO/VA/SERVICE/Basic/Network/.meta_dhcp_client.xml diff --git a/PALOALTO/VA/SERVICE/Basic/Network/.meta_import.xml b/PALOALTO/VA/SERVICE/Basic/Network/.meta_import.xml index 9f92bd48..ce19b006 100755 --- a/PALOALTO/VA/SERVICE/Basic/Network/.meta_import.xml +++ b/PALOALTO/VA/SERVICE/Basic/Network/.meta_import.xml @@ -19,7 +19,7 @@ MODEL - Vsys + 134 FILE_TYPE diff --git a/PALOALTO/VA/SERVICE/Basic/Network/.meta_layer3.xml b/PALOALTO/VA/SERVICE/Basic/Network/.meta_layer3.xml index 10261337..781a30f3 100755 --- a/PALOALTO/VA/SERVICE/Basic/Network/.meta_layer3.xml +++ b/PALOALTO/VA/SERVICE/Basic/Network/.meta_layer3.xml @@ -19,7 +19,7 @@ MODEL - Vsys + 134 FILE_TYPE diff --git a/PALOALTO/VA/SERVICE/Basic/Network/.meta_network.xml b/PALOALTO/VA/SERVICE/Basic/Network/.meta_network.xml index 0b0e3e66..08ddc2c5 100755 --- a/PALOALTO/VA/SERVICE/Basic/Network/.meta_network.xml +++ b/PALOALTO/VA/SERVICE/Basic/Network/.meta_network.xml @@ -19,7 +19,7 @@ MODEL - Vsys + 134 FILE_TYPE diff --git a/PALOALTO/VA/V7.0/Network/Ethernet/.meta_eth_tag.xml b/PALOALTO/VA/SERVICE/Basic/Network/Ethernet/.meta_eth_tag.xml similarity index 100% rename from PALOALTO/VA/V7.0/Network/Ethernet/.meta_eth_tag.xml rename to PALOALTO/VA/SERVICE/Basic/Network/Ethernet/.meta_eth_tag.xml diff --git a/PALOALTO/VA/V7.0/Network/Ethernet/.meta_ethernet.xml b/PALOALTO/VA/SERVICE/Basic/Network/Ethernet/.meta_ethernet.xml similarity index 100% rename from PALOALTO/VA/V7.0/Network/Ethernet/.meta_ethernet.xml rename to PALOALTO/VA/SERVICE/Basic/Network/Ethernet/.meta_ethernet.xml diff --git a/PALOALTO/VA/V7.0/Network/Ethernet/eth_tag.xml b/PALOALTO/VA/SERVICE/Basic/Network/Ethernet/eth_tag.xml similarity index 100% rename from PALOALTO/VA/V7.0/Network/Ethernet/eth_tag.xml rename to PALOALTO/VA/SERVICE/Basic/Network/Ethernet/eth_tag.xml diff --git a/PALOALTO/VA/V7.0/Network/Ethernet/ethernet.xml b/PALOALTO/VA/SERVICE/Basic/Network/Ethernet/ethernet.xml similarity index 100% rename from PALOALTO/VA/V7.0/Network/Ethernet/ethernet.xml rename to PALOALTO/VA/SERVICE/Basic/Network/Ethernet/ethernet.xml diff --git a/PALOALTO/VA/V7.0/Network/Virtual-wire/.meta_vwire.xml b/PALOALTO/VA/SERVICE/Basic/Network/Virtual-Wire/.meta_vwire.xml similarity index 100% rename from PALOALTO/VA/V7.0/Network/Virtual-wire/.meta_vwire.xml rename to PALOALTO/VA/SERVICE/Basic/Network/Virtual-Wire/.meta_vwire.xml diff --git a/PALOALTO/VA/V7.0/Network/Virtual-wire/vwire.xml b/PALOALTO/VA/SERVICE/Basic/Network/Virtual-Wire/vwire.xml similarity index 100% rename from PALOALTO/VA/V7.0/Network/Virtual-wire/vwire.xml rename to PALOALTO/VA/SERVICE/Basic/Network/Virtual-Wire/vwire.xml diff --git a/PALOALTO/VA/V7.1/dhcp_client.xml b/PALOALTO/VA/SERVICE/Basic/Network/dhcp_client.xml similarity index 100% rename from PALOALTO/VA/V7.1/dhcp_client.xml rename to PALOALTO/VA/SERVICE/Basic/Network/dhcp_client.xml diff --git a/PALOALTO/VA/SERVICE/Basic/Network/zone.xml b/PALOALTO/VA/SERVICE/Basic/Network/zone.xml index 62e01ae3..ed990557 100755 --- a/PALOALTO/VA/SERVICE/Basic/Network/zone.xml +++ b/PALOALTO/VA/SERVICE/Basic/Network/zone.xml @@ -1,55 +1,110 @@ - - - /images/eclipseIcons/page_obj.gif - Zones - object_id - - 10 - 5 + + xml false + + object_id false + Network + /images/eclipseIcons/page_obj.gif false + false + 1 0 + Zone + 10000 - Zones - Objects|Network - false - 0 false true true true params._order - - - - - - <zone><entry name="TEST2_R1_vFW"><network><layer3><member>ae1.1</member></layer3></network></entry><entry name="TEST2_R1_VM"><network><layer3><member>ae2.1</member></layer3></network></entry></zone> + 5 + + + + + layer3 + layer2 + tap + virtual-wire + + + + +
Members
+ + + ethernet + + + + type=config&action=show + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/zone
- @^\s \s*$@ + //zone/entry
- - @name="(?<object_id>.*)"@ + //entry/@name + @name="(?<object_id>.*)"@ + + + //entry/network/* + @<(?<zone_type>[^\s\>]+).*>@ + + + + //entry/network/*/member + + + //member + @<member>(?<member>.*)</member>@ + + + - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/zone + + + + type=config&action=set + + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/zone/entry[@name='{$params.object_id}']/network + + <{$params.zone_type}> +{foreach $params.members as $membrs} +<member>{$membrs.member}</member> +{/foreach} +</{$params.zone_type}> + + + + type=config&action=delete + + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/zone/entry[@name='{$params.object_id}'] + + + + + + type=config&action=set + + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/zone/entry[@name='{$params.object_id}']/network + + <{$params.zone_type}> +{foreach $params.members as $membrs} +<member>{$membrs.member}</member> +{/foreach} +</{$params.zone_type}> + - - - - - - diff --git a/PALOALTO/VA/SERVICE/Basic/Orchestration/.meta_simple_firewall b/PALOALTO/VA/SERVICE/Basic/Orchestration/.meta_simple_firewall deleted file mode 100755 index bc821de7..00000000 --- a/PALOALTO/VA/SERVICE/Basic/Orchestration/.meta_simple_firewall +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1583770459981 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1583770459967 - - - TAG - - - FILE_TYPE - text - - - MODEL - Vsys - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/SERVICE/Basic/Orchestration/simple_firewall b/PALOALTO/VA/SERVICE/Basic/Orchestration/simple_firewall deleted file mode 100755 index eff6e351..00000000 --- a/PALOALTO/VA/SERVICE/Basic/Orchestration/simple_firewall +++ /dev/null @@ -1,127 +0,0 @@ - - - xml - - - false - - object_id - false - Orchestration|Policies - /images/eclipseIcons/page_obj.gif - false - false - 1 - 0 - simple_firewall - 10000 - - false - true - true - true - params._order - 5 - - - - -
Source
- - - - - 255.255.255.0 - 255.255.255.254 - 255.255.255.255 - - -
Source
- - - - -
Destination
- - - - - 255.255.255.0 - 255.255.255.254 - 255.255.255.255 - - -
Destination
- - - - - - allow - deny - - - - - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - - <from> -<member>external</member> -</from> -<to> -<member>internal</member> -</to> -<source> -<member>{$params.src_ip}/{get_mask_len mask=$params.src_mask}</member> -</source> -<destination> -<member>{$params.dst_ip}/{get_mask_len mask=$params.dst_mask}</member> -</destination> -<source-user> -<member>any</member> -</source-user> -<category> -<member>any</member> -</category> -<application> -<member>any</member> -</application> -<service> -<member>{$params.service}</member> -</service> -<hip-profiles> -<member>any</member> -</hip-profiles> -<action>{$params.action|default:'deny'}</action> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - - - - - - - - - - - - - - - - - - - - - diff --git a/PALOALTO/VA/SERVICE/Basic/Security/.meta_policy.xml b/PALOALTO/VA/SERVICE/Basic/Security/.meta_policy.xml index 05df420a..5432d728 100755 --- a/PALOALTO/VA/SERVICE/Basic/Security/.meta_policy.xml +++ b/PALOALTO/VA/SERVICE/Basic/Security/.meta_policy.xml @@ -3,7 +3,7 @@ DATE_MODIFICATION - 1594218650607 + 1607531116239 REPOSITORY @@ -11,7 +11,7 @@ DATE_CREATION - 1594218650599 + 1607531116231 MODEL diff --git a/PALOALTO/VA/DEV/Security/.meta_schedule.xml b/PALOALTO/VA/SERVICE/Basic/Security/.meta_schedule.xml similarity index 100% rename from PALOALTO/VA/DEV/Security/.meta_schedule.xml rename to PALOALTO/VA/SERVICE/Basic/Security/.meta_schedule.xml diff --git a/PALOALTO/VA/SERVICE/Basic/Security/policy.xml b/PALOALTO/VA/SERVICE/Basic/Security/policy.xml index 721f83f8..3d5cb721 100755 --- a/PALOALTO/VA/SERVICE/Basic/Security/policy.xml +++ b/PALOALTO/VA/SERVICE/Basic/Security/policy.xml @@ -1,23 +1,23 @@ /images/eclipseIcons/page_obj.gif - Firewall Policy + object_id - 10 + 1 0 xml true - true + false false 0 - Firewall Policy - Firewall Policy + Security Policies + Policies false - 10 + 1 false true true @@ -26,7 +26,7 @@ - + Source @@ -43,10 +43,7 @@ address_ip_range - - - Destination - + zone @@ -75,9 +72,45 @@ - <rulebase><security><rules><entry name="Fw-Pascal"><from><member>Trust</member></from><to><member>untrust</member></to><source><member>Ip_Lan_192.168.45.0</member></source><destination><member>any</member></destination><source-user><member>any</member></source-user><category><member>any</member></category><application><member>any</member></application><service><member>service-http</member><member>service-https</member></service><hip-profiles><member>any</member></hip-profiles><action>allow</action><tag><member>Trust</member></tag></entry></rules></security> -</rulebase> - + <rulebase> +<security> +<rules> +<entry name="Fw-Pascal"> +<from> +<member>Trust</member> +</from> +<to> +<member>untrust</member> +</to> +<source> +<member>Ip_Lan_192.168.45.0</member> +</source> +<destination> +<member>any</member> +</destination> +<source-user> +<member>any</member> +</source-user> +<category> +<member>any</member> +</category> +<application> +<member>any</member> +</application> +<service> +<member>service-http</member> +<member>service-https</member> +</service> +<hip-profiles> +<member>any</member> +</hip-profiles><action>allow</action> +<tag> +<member>Trust</member> +</tag> +</entry> +</rules> +</security> +</rulebase> type=config&action=show @@ -89,32 +122,32 @@ - @name="(?<object_id>.*)"@ + @name="(?<object_id>.*)"@ //entry/@name - @<member>(?<zone_from>.*)</member>@ + @<member>(?<zone_from>.*)</member>@ //entry/from/member - @<member>(?<zone_to>.*)</member>@ + @<member>(?<zone_to>.*)</member>@ //entry/to/member - @<member>(?<src_address>.*)</member>@ + @<member>(?<src_address>.*)</member>@ //entry/source/member - @<member>(?<dst_address>.*)</member>@ + @<member>(?<dst_address>.*)</member>@ //entry/destination/member - @<action>(?<action>.*)</action>@ + @<action>(?<action>.*)</action>@ //entry/action @@ -122,103 +155,95 @@ - @<member>(?<service>.*)</member>@ + @<member>(?<service>.*)</member>@ //member @^\s \s*$@ + //entry/service/member - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules - <entry name="{$params.object_id}"> -<from> -<member>{$params.zone_from}</member> -</from> -<to> -<member>{$params.zone_to}</member> -</to> -<source> -<member>{$params.src_address}</member> -</source> -<destination> -<member>{$params.dst_address}</member> -</destination> -<source-user> -<member>any</member> -</source-user> -<category> -<member>any</member> -</category> -<application> -<member>any</member> -</application> -<service> + <entry name="{$params.object_id}"> +<from> +<member>{$params.zone_from}</member> +</from> +<to> +<member>{$params.zone_to}</member> +</to> +<source> +<member>{$params.src_address}</member> +</source> +<destination> +<member>{$params.dst_address}</member> +</destination> +<source-user> +<member>any</member> +</source-user> +<category> +<member>any</member> +</category> +<application> +<member>any</member> +</application> +<service> {foreach $params.services as $srv} -<member>{$srv.service}</member> +<member>{$srv.service}</member> {/foreach} -</service> -<hip-profiles> -<member>any</member> -</hip-profiles> -<action>{$params.action}</action> -</entry> - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - +</service> +<hip-profiles> +<member>any</member> +</hip-profiles> +<action>{$params.action}</action> +</entry> + type=config&action=edit + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - <from> -<member>{$params.zone_from}</member> -</from> -<to> -<member>{$params.zone_to}</member> -</to> -<source> -<member>{$params.src_address}</member> -</source> -<destination> -<member>{$params.dst_address}</member> -</destination> -<source-user> -<member>any</member> -</source-user> -<category> -<member>any</member> -</category> -<application> -<member>any</member> -</application> -<service> + <from> +<member>{$params.zone_from}</member> +</from> +<to> +<member>{$params.zone_to}</member> +</to> +<source> +<member>{$params.src_address}</member> +</source> +<destination> +<member>{$params.dst_address}</member> +</destination> +<source-user> +<member>any</member> +</source-user> +<category> +<member>any</member> +</category> +<application> +<member>any</member> +</application> +<service> {foreach $params.services as $srv} -<member>{$srv.service}</member> +<member>{$srv.service}</member> {/foreach} -</service> -<hip-profiles> -<member>any</member> -</hip-profiles> -<action>{$params.action}</action> - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - +</service> +<hip-profiles> +<member>any</member> +</hip-profiles> +<action>{$params.action}</action> + type=config&action=set + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - + <!-- uuu --> + type=config&action=delete + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] diff --git a/PALOALTO/VA/DEV/Security/schedule.xml b/PALOALTO/VA/SERVICE/Basic/Security/schedule.xml similarity index 100% rename from PALOALTO/VA/DEV/Security/schedule.xml rename to PALOALTO/VA/SERVICE/Basic/Security/schedule.xml diff --git a/PALOALTO/VA/SERVICE/Basic/Security/service.xml b/PALOALTO/VA/SERVICE/Basic/Security/service.xml index 2b3ae2ac..b3fff7f4 100755 --- a/PALOALTO/VA/SERVICE/Basic/Security/service.xml +++ b/PALOALTO/VA/SERVICE/Basic/Security/service.xml @@ -1,180 +1,122 @@ - - + + + /images/eclipseIcons/page_obj.gif + Security Services + object_id + + 1 + 0 xml false - - object_id false - Firewall Policy - /images/eclipseIcons/page_obj.gif false - false - 10 0 - Security Services - 10 + Security Services + Policies + false + 1 false true true true params._order - 5 - true - - - + + + + urlf_shared_profile urlf_user_profile - + antivirus_shared_profile antivirus_user_profile - + vulnerability_shared_profile - + zone - + zone - - <rulebase> - <security> - <rules> - <entry name="FW_20140728_1"> - <profile-setting> - <profiles> - <url-filtering> - <member>MSS_URL_Template_VM-vFW</member> - </url-filtering> - <virus> - <member>MSS_Web_Mail_AntiVirus</member> - </virus> - <spyware> - <member>MSS_SPY_Block</member> - </spyware> - <vulnerability> - <member>MSS_IPS_Block</member> - </vulnerability> - </profiles> - </profile-setting> - <option> - <disable-server-response-inspection>no</disable-server-response-inspection> - </option> - <from> - <member>TEST2_R1_VM</member> - </from> - <to> - <member>TEST2_R1_vFW</member> - </to> - <source> - <member>any</member> - </source> - <destination> - <member>any</member> - </destination> - <source-user> - <member>any</member> - </source-user> - <category> - <member>any</member> - </category> - <application> - <member>any</member> - </application> - <service> - <member>any</member> - </service> - <hip-profiles> - <member>any</member> - </hip-profiles> - <log-start>no</log-start> - <log-end>yes</log-end> - <log-setting>SOC_Default_Logging</log-setting> - <negate-source>no</negate-source> - <negate-destination>no</negate-destination> - <action>allow</action> - </entry> + + + <rulebase><security><rules><entry name="FW_20140728_1"><profile-setting><profiles><url-filtering><member>MSS_URL_Template_VM-vFW</member></url-filtering><virus><member>MSS_Web_Mail_AntiVirus</member></virus><spyware><member>MSS_SPY_Block</member></spyware><vulnerability><member>MSS_IPS_Block</member></vulnerability></profiles></profile-setting><option><disable-server-response-inspection>no</disable-server-response-inspection></option><from><member>TEST2_R1_VM</member></from><to><member>TEST2_R1_vFW</member></to><source><member>any</member></source><destination><member>any</member></destination><source-user><member>any</member></source-user><category><member>any</member></category><application><member>any</member></application><service><member>any</member></service><hip-profiles><member>any</member></hip-profiles><log-start>no</log-start><log-end>yes</log-end><log-setting>SOC_Default_Logging</log-setting><negate-source>no</negate-source><negate-destination>no</negate-destination><action>allow</action></entry> type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules
- //rules/entry + @^\s \s*$@
- //entry/@name - @name="(?<object_id>.*)"@ + + @name="(?<object_id>.*)"@ - - //entry/profile-setting/profiles/url-filtering/member - @<member>(?<url_filtering_profile>.*)</member>@ + + @<member>(?<url_filtering_profile>.*)</member>@ - //entry/profile-setting/profiles/virus/member - @<member>(?<virus_profile>.*)</member>@ + + @<member>(?<virus_profile>.*)</member>@ - - //entry/profile-setting/profiles/vulnerability/member - @<member>(?<ips_profile>.*)</member>@ + + @<member>(?<ips_profile>.*)</member>@ - //entry/from/member - @<member>(?<zone_from>.*)</member>@ + + @<member>(?<zone_from>.*)</member>@ - //entry/to/member - @<member>(?<zone_to>.*)</member>@ + + @<member>(?<zone_to>.*)</member>@ - - - - + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}']/profile-setting/profiles - - <profiles> + + <profiles> {if !empty($params.url_filtering_profile)} -<url-filtering> - <member>{$params.url_filtering_profile}</member> -</url-filtering> +<url-filtering><member>{$params.url_filtering_profile}</member> +</url-filtering> {/if} {if !empty($params.virus_profile)} -<virus> - <member>{$params.virus_profile}</member> -</virus> +<virus><member>{$params.virus_profile}</member> +</virus> {/if} {if !empty($params.ips_profile)} -<vulnerability> - <member>{$params.ips_profile}</member> -</vulnerability> +<vulnerability><member>{$params.ips_profile}</member> +</vulnerability> {/if} -</profiles> +</profiles> + type=config&action=edit + + /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}']/profile-setting/profiles + + + + + + diff --git a/PALOALTO/VA/V7.0/Services/.meta_predefined_services.xml b/PALOALTO/VA/SERVICE/Basic/Services/.meta_predefined_services.xml similarity index 100% rename from PALOALTO/VA/V7.0/Services/.meta_predefined_services.xml rename to PALOALTO/VA/SERVICE/Basic/Services/.meta_predefined_services.xml diff --git a/PALOALTO/VA/V7.0/Services/.meta_services.xml b/PALOALTO/VA/SERVICE/Basic/Services/.meta_services.xml similarity index 100% rename from PALOALTO/VA/V7.0/Services/.meta_services.xml rename to PALOALTO/VA/SERVICE/Basic/Services/.meta_services.xml diff --git a/PALOALTO/VA/V7.0/Services/predefined_services.xml b/PALOALTO/VA/SERVICE/Basic/Services/predefined_services.xml similarity index 100% rename from PALOALTO/VA/V7.0/Services/predefined_services.xml rename to PALOALTO/VA/SERVICE/Basic/Services/predefined_services.xml diff --git a/PALOALTO/VA/V7.0/Services/services.xml b/PALOALTO/VA/SERVICE/Basic/Services/services.xml similarity index 100% rename from PALOALTO/VA/V7.0/Services/services.xml rename to PALOALTO/VA/SERVICE/Basic/Services/services.xml diff --git a/PALOALTO/VA/V7.0/.meta_jobs.xml b/PALOALTO/VA/SERVICE/Basic/System/.meta_jobs.xml similarity index 100% rename from PALOALTO/VA/V7.0/.meta_jobs.xml rename to PALOALTO/VA/SERVICE/Basic/System/.meta_jobs.xml diff --git a/PALOALTO/VA/V7.0/.meta_timezone.xml b/PALOALTO/VA/SERVICE/Basic/System/.meta_timezone.xml similarity index 100% rename from PALOALTO/VA/V7.0/.meta_timezone.xml rename to PALOALTO/VA/SERVICE/Basic/System/.meta_timezone.xml diff --git a/PALOALTO/VA/V7.0/System/jobs.xml b/PALOALTO/VA/SERVICE/Basic/System/jobs.xml similarity index 100% rename from PALOALTO/VA/V7.0/System/jobs.xml rename to PALOALTO/VA/SERVICE/Basic/System/jobs.xml diff --git a/PALOALTO/VA/V7.0/System/timezone.xml b/PALOALTO/VA/SERVICE/Basic/System/timezone.xml similarity index 100% rename from PALOALTO/VA/V7.0/System/timezone.xml rename to PALOALTO/VA/SERVICE/Basic/System/timezone.xml diff --git a/PALOALTO/VA/V7.0/Users/.meta_user_group.xml b/PALOALTO/VA/SERVICE/Basic/Users/.meta_user_group.xml similarity index 100% rename from PALOALTO/VA/V7.0/Users/.meta_user_group.xml rename to PALOALTO/VA/SERVICE/Basic/Users/.meta_user_group.xml diff --git a/PALOALTO/VA/V7.0/Users/.meta_users.xml b/PALOALTO/VA/SERVICE/Basic/Users/.meta_users.xml similarity index 100% rename from PALOALTO/VA/V7.0/Users/.meta_users.xml rename to PALOALTO/VA/SERVICE/Basic/Users/.meta_users.xml diff --git a/PALOALTO/VA/V7.0/Users/user_group.xml b/PALOALTO/VA/SERVICE/Basic/Users/user_group.xml similarity index 100% rename from PALOALTO/VA/V7.0/Users/user_group.xml rename to PALOALTO/VA/SERVICE/Basic/Users/user_group.xml diff --git a/PALOALTO/VA/V7.0/Users/users.xml b/PALOALTO/VA/SERVICE/Basic/Users/users.xml similarity index 100% rename from PALOALTO/VA/V7.0/Users/users.xml rename to PALOALTO/VA/SERVICE/Basic/Users/users.xml diff --git a/PALOALTO/VA/DEV/Filtering/.meta_filtering_policy.xml b/PALOALTO/VA/SERVICE/Filtering/.meta_filtering_policy.xml similarity index 100% rename from PALOALTO/VA/DEV/Filtering/.meta_filtering_policy.xml rename to PALOALTO/VA/SERVICE/Filtering/.meta_filtering_policy.xml diff --git a/PALOALTO/VA/DEV/Filtering/.meta_profile_group.xml b/PALOALTO/VA/SERVICE/Filtering/.meta_profile_group.xml similarity index 100% rename from PALOALTO/VA/DEV/Filtering/.meta_profile_group.xml rename to PALOALTO/VA/SERVICE/Filtering/.meta_profile_group.xml diff --git a/PALOALTO/VA/DEV/Filtering/filtering_policy.xml b/PALOALTO/VA/SERVICE/Filtering/filtering_policy.xml similarity index 100% rename from PALOALTO/VA/DEV/Filtering/filtering_policy.xml rename to PALOALTO/VA/SERVICE/Filtering/filtering_policy.xml diff --git a/PALOALTO/VA/DEV/Filtering/profile_group.xml b/PALOALTO/VA/SERVICE/Filtering/profile_group.xml similarity index 100% rename from PALOALTO/VA/DEV/Filtering/profile_group.xml rename to PALOALTO/VA/SERVICE/Filtering/profile_group.xml diff --git a/PALOALTO/VA/SERVICE/IPSEC-VPN/.meta_Phase1 b/PALOALTO/VA/SERVICE/IPSEC-VPN/.meta_Phase1 deleted file mode 100755 index 08c0dfad..00000000 --- a/PALOALTO/VA/SERVICE/IPSEC-VPN/.meta_Phase1 +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1434984110693 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1434984110468 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - UPLOAD - - - TAG - VPN - - - diff --git a/PALOALTO/VA/SERVICE/IPSEC_VPN/.meta_Phase2 b/PALOALTO/VA/SERVICE/IPSEC-VPN/.meta_ipsec_phase1.xml similarity index 100% rename from PALOALTO/VA/SERVICE/IPSEC_VPN/.meta_Phase2 rename to PALOALTO/VA/SERVICE/IPSEC-VPN/.meta_ipsec_phase1.xml diff --git a/PALOALTO/VA/SERVICE/IPSEC-VPN/.meta_Phase2 b/PALOALTO/VA/SERVICE/IPSEC-VPN/.meta_ipsec_phase2.xml similarity index 89% rename from PALOALTO/VA/SERVICE/IPSEC-VPN/.meta_Phase2 rename to PALOALTO/VA/SERVICE/IPSEC-VPN/.meta_ipsec_phase2.xml index 48e4ef7c..c4f5e0a3 100755 --- a/PALOALTO/VA/SERVICE/IPSEC-VPN/.meta_Phase2 +++ b/PALOALTO/VA/SERVICE/IPSEC-VPN/.meta_ipsec_phase2.xml @@ -11,7 +11,7 @@ DATE_MODIFICATION - 1435061884096 + 1435914323853 COMMENT @@ -23,7 +23,7 @@ DATE_CREATION - 1434984115331 + 1435914309856 MANUFACTURER @@ -32,13 +32,13 @@ CONFIGURATION_FILTER - - TAG - VPN - TYPE UPLOAD + + TAG + IPSEC VPN + diff --git a/PALOALTO/VA/SERVICE/IPSEC-VPN/Phase2 b/PALOALTO/VA/SERVICE/IPSEC-VPN/Phase2 deleted file mode 100755 index 0c6c2b00..00000000 --- a/PALOALTO/VA/SERVICE/IPSEC-VPN/Phase2 +++ /dev/null @@ -1,266 +0,0 @@ - - - xml - false - - object_id - false - VPN - /images/eclipseIcons/page_obj.gif - false - 1 - Phase 2 - 10001 - - false - false - true - true - true - params._order - 5 - - - - - ah - esp - - - - - - -
encryption
- - - - - md5 - sha1 - sha256 - sh384 - sha512 - - -
encryption
- - - - - - - md5 - sha1 - sha256 - sha384 - sha512 - - - - - group1 - group14 - group2 - group5 - no-pfs - - - - - - - -
ah_auth
- - - - <ipsec-crypto-profiles> -<entry name=”default”> -<encryption> -<member>aes192</member> -<member>aes256</member> -<member>aes128</member> -<member>3des</member> -</encryption> -<hash> -<member>sha1</member> -<member>md5</member> -</hash> -<dh-group> -<member>group2</member> -<member>group1</member> -</dh-group> -<lifetime> -<hours>24</hours> -</lifetime> -</entry> -</ipsec-crypto-profiles> - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/network/ike/crypto-profiles/ipsec-crypto-profiles - -
- //ipsec-crypto-profiles/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - //entry/lifetime/days - @<(?<lifetime_unit>[^>]*)>(?<lifetime>.*)</days>@ - - - //entry/lifetime/hours - @<(?<lifetime_unit>[^>]*)>(?<lifetime>.*)</hours>@ - - - //entry/lifetime/minutes - @<(?<lifetime_unit>[^>]*)>(?<lifetime>.*)</minutes>@ - - - //entry/lifetime/seconds - @<(?<lifetime_unit>[^>]*)>(?<lifetime>.*)</seconds>@ - - - //entry/dh-group - @<dh-group>(?<dhgroup>.*)</dh-group>@ - - - //entry/ah - @<(?<protocol>[^>]+)>@ - - - //entry/esp - @<(?<protocol>[^>]+)>@ - - - - //entry/esp/encryption/member - - - //member - @<member>(?<member>.*)</member>@ - - - - - - - //entry/esp/authentication/member - - - //member - @<member>(?<member>.*)</member>@ - - - - - - - //entry/ah/authentication/member - - - //member - @<member>(?<member>.*)</member>@ - - - - - - - - {if $params.lifetime_unit=="days"} -{assign_object_variable var="lifetime" value=$params.lifetime*86400} -{elseif $params.lifetime_unit=="hours"} -{assign_object_variable var="lifetime" value=$params.lifetime*3600} -{elseif $params.lifetime_unit=="minutes"} -{assign_object_variable var="lifetime" value=$params.lifetime*60} -{/if} -{if !empty($params.ah_auth)} -{foreach $params.ah_auth as $index => $member} -{assign_object_variable var="authentication.$index.member" value=$member.member} -{/foreach} -{/if} - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/network/ike/crypto-profiles/ipsec-crypto-profiles/entry[@name='{$params.object_id}'] - - {if $params.protocol=="esp"} -<esp> -<encryption> -{foreach $params.encryption as $encryption} -<member>{$encryption.member}</member> -{/foreach} -</encryption> -<authentication> -{foreach $params.authentication as $authentication} -<member>{$authentication.member}</member> -{/foreach} -</authentication> -</esp> -{else} -<ah> -<authentication> -{foreach $params.authentication as $authentication} -<member>{$authentication.member}</member> -{/foreach} -</authentication> -</ah> -{/if} -<dh-group>{$params.dhgroup}</dh-group> -<lifetime> -<seconds>{$params.lifetime}</seconds> -</lifetime> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/network/ike/crypto-profiles/ipsec-crypto-profiles/entry[@name='{$params.object_id}'] - - <entry name="{$params.object_id}"> -{if $params.protocol=="esp"} -<esp> -<encryption> -{foreach $params.encryption as $encryption} -<member>{$encryption.member}</member> -{/foreach} -</encryption> -<authentication> -{foreach $params.authentication as $authentication} -<member>{$authentication.member}</member> -{/foreach} -</authentication> -</esp> -{else} -<ah> -<authentication> -{foreach $params.authentication as $authentication} -<member>{$authentication.member}</member> -{/foreach} -</authentication> -</ah> -{/if} -<dh-group>{$params.dhgroup}</dh-group> -<lifetime> -<seconds>{$params.lifetime}</seconds> -</lifetime> -</entry> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/network/ike/crypto-profiles/ipsec-crypto-profiles/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/SERVICE/IPSEC-VPN/Phase1 b/PALOALTO/VA/SERVICE/IPSEC-VPN/ipsec_phase1.xml similarity index 100% rename from PALOALTO/VA/SERVICE/IPSEC-VPN/Phase1 rename to PALOALTO/VA/SERVICE/IPSEC-VPN/ipsec_phase1.xml diff --git a/PALOALTO/VA/SERVICE/IPSEC_VPN/Phase2 b/PALOALTO/VA/SERVICE/IPSEC-VPN/ipsec_phase2.xml similarity index 100% rename from PALOALTO/VA/SERVICE/IPSEC_VPN/Phase2 rename to PALOALTO/VA/SERVICE/IPSEC-VPN/ipsec_phase2.xml diff --git a/PALOALTO/VA/SERVICE/IPSEC_VPN/.meta_Phase1 b/PALOALTO/VA/SERVICE/IPSEC_VPN/.meta_Phase1 deleted file mode 100755 index 27f2a6e7..00000000 --- a/PALOALTO/VA/SERVICE/IPSEC_VPN/.meta_Phase1 +++ /dev/null @@ -1,37 +0,0 @@ - - - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1435914329119 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1435914277748 - - - CONFIGURATION_FILTER - - - - TAG - IPSEC VPN - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/SERVICE/IPSEC_VPN/Phase1 b/PALOALTO/VA/SERVICE/IPSEC_VPN/Phase1 deleted file mode 100755 index 080b90d3..00000000 --- a/PALOALTO/VA/SERVICE/IPSEC_VPN/Phase1 +++ /dev/null @@ -1,213 +0,0 @@ - - - xml - false - - object_id - false - VPN - /images/eclipseIcons/page_obj.gif - false - 1 - Phase 1 - 10000 - - false - false - true - true - true - params._order - 5 - - - - - 3des - aes128 - aes192 - aes256 - - - - - md5 - sha1 - sha256 - sha384 - sha512 - - - - - group1 - group14 - group2 - group5 - - - - - - days - hours - minutes - seconds - - - - <ike-crypto-profiles> -<entry name=”default”> -<encryption> -<member>aes192</member> -<member>aes256</member> -<member>aes128</member> -<member>3des</member> -</encryption> -<hash> -<member>sha1</member> -<member>md5</member> -</hash> -<dh-group> -<member>group2</member> -<member>group1</member> -</dh-group> -<lifetime> -<hours>24</hours> -</lifetime> -</entry> -</ike-crypto-profiles> - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/network/ike/crypto-profiles/ike-crypto-profiles - -
- //ike-crypto-profiles/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - //entry/lifetime/days - @<(?<lifetime_unit>[^>]*)>(?<lifetime>.*)</days>@ - - - //entry/lifetime/hours - @<(?<lifetime_unit>[^>]*)>(?<lifetime>.*)</hours>@ - - - //entry/lifetime/minutes - @<(?<lifetime_unit>[^>]*)>(?<lifetime>.*)</minutes>@ - - - //entry/lifetime/seconds - @<(?<lifetime_unit>[^>]*)>(?<lifetime>.*)</seconds>@ - - - - //entry/encryption/member - - - //member - @<member>(?<member>.*)</member>@ - - - - - - - //entry/hash/member - - - //member - @<member>(?<member>.*)</member>@ - - - - - - - //entry/dh-group/member - - - //member - @<member>(?<member>.*)</member>@ - - - - - - - {if $params.lifetime_unit=="days"} -{assign_object_variable var="lifetime" value=$params.lifetime*86400} -{elseif $params.lifetime_unit=="hours"} -{assign_object_variable var="lifetime" value=$params.lifetime*3600} -{elseif $params.lifetime_unit=="minutes"} -{assign_object_variable var="lifetime" value=$params.lifetime*60} -{/if} - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/network/ike/crypto-profiles/ike-crypto-profiles/entry[@name='{$params.object_id}'] - - <encryption> -{foreach $params.encryption as $encryption} -<member>{$encryption.member}</member> -{/foreach} -</encryption> -<hash> -{foreach $params.hash as $hash} -<member>{$hash.member}</member> -{/foreach} -</hash> -<dh-group> -{foreach $params.dhgroup as $dhgroup} -<member>{$dhgroup.member}</member> -{/foreach} -</dh-group> -<lifetime> -<seconds>{$params.lifetime}</seconds> -</lifetime> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/network/ike/crypto-profiles/ike-crypto-profiles/entry[@name='{$params.object_id}'] - - <entry name="{$params.object_id}"> -<encryption> -{foreach $params.encryption as $encryption} -<member>{$encryption.member}</member> -{/foreach} -</encryption> -<hash> -{foreach $params.hash as $hash} -<member>{$hash.member}</member> -{/foreach} -</hash> -<dh-group> -{foreach $params.dhgroup as $dhgroup} -<member>{$dhgroup.member}</member> -{/foreach} -</dh-group> -<lifetime> -<seconds>{$params.lifetime}</seconds> -</lifetime> -</entry> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/network/ike/crypto-profiles/ike-crypto-profiles/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/V7.0/URLF/.meta_url_categories.xml b/PALOALTO/VA/SERVICE/URL-Filtering/.meta_url_categories.xml similarity index 100% rename from PALOALTO/VA/V7.0/URLF/.meta_url_categories.xml rename to PALOALTO/VA/SERVICE/URL-Filtering/.meta_url_categories.xml diff --git a/PALOALTO/VA/SERVICE/URL-Filtering/.meta_urlf_shared_profile.xml b/PALOALTO/VA/SERVICE/URL-Filtering/.meta_urlf_shared_profile.xml index 7a51a659..40ca2f26 100755 --- a/PALOALTO/VA/SERVICE/URL-Filtering/.meta_urlf_shared_profile.xml +++ b/PALOALTO/VA/SERVICE/URL-Filtering/.meta_urlf_shared_profile.xml @@ -19,7 +19,7 @@ MODEL - Vsys + 134 FILE_TYPE diff --git a/PALOALTO/VA/SERVICE/URL-Filtering/.meta_urlf_user_profile.xml b/PALOALTO/VA/SERVICE/URL-Filtering/.meta_urlf_user_profile.xml index d55541b8..a4b10c1e 100755 --- a/PALOALTO/VA/SERVICE/URL-Filtering/.meta_urlf_user_profile.xml +++ b/PALOALTO/VA/SERVICE/URL-Filtering/.meta_urlf_user_profile.xml @@ -19,7 +19,7 @@ MODEL - Vsys + 134 FILE_TYPE diff --git a/PALOALTO/VA/V7.0/URLF/url_categories.xml b/PALOALTO/VA/SERVICE/URL-Filtering/url_categories.xml similarity index 100% rename from PALOALTO/VA/V7.0/URLF/url_categories.xml rename to PALOALTO/VA/SERVICE/URL-Filtering/url_categories.xml diff --git a/PALOALTO/VA/SERVICE/Vulnerability/.meta_vulnerability_shared_profile.xml b/PALOALTO/VA/SERVICE/Vulnerability/.meta_vulnerability_shared_profile.xml index 98f52277..9aa8e606 100755 --- a/PALOALTO/VA/SERVICE/Vulnerability/.meta_vulnerability_shared_profile.xml +++ b/PALOALTO/VA/SERVICE/Vulnerability/.meta_vulnerability_shared_profile.xml @@ -19,7 +19,7 @@ MODEL - Vsys + 134 FILE_TYPE diff --git a/PALOALTO/VA/SERVICE/Vulnerability/.meta_vulnerability_user_profile.xml b/PALOALTO/VA/SERVICE/Vulnerability/.meta_vulnerability_user_profile.xml index 02978903..77b815ab 100755 --- a/PALOALTO/VA/SERVICE/Vulnerability/.meta_vulnerability_user_profile.xml +++ b/PALOALTO/VA/SERVICE/Vulnerability/.meta_vulnerability_user_profile.xml @@ -26,7 +26,7 @@ MODEL - Vsys + 134 MANUFACTURER diff --git a/PALOALTO/VA/SERVICE/Vulnerability/vulnerability_shared_profile.xml b/PALOALTO/VA/SERVICE/Vulnerability/vulnerability_shared_profile.xml index 2612be30..78607af7 100755 --- a/PALOALTO/VA/SERVICE/Vulnerability/vulnerability_shared_profile.xml +++ b/PALOALTO/VA/SERVICE/Vulnerability/vulnerability_shared_profile.xml @@ -1,68 +1,55 @@ - - + + + /images/eclipseIcons/page_obj.gif + IPS/IDS profiles + object_id + + 200 + 0 xml false - - object_id false - Objects|Security Profiles - /images/eclipseIcons/page_obj.gif false - false - 1 0 - Default Vulnerability Profile - 200 + IPS/IDS profiles + Objects|Security Profiles + false + 1 false true true true params._order - 5 - false - - - - <vulnerability> - <entry name="MSS_IPS_Block"> - <rules> - <entry name="Critical"> - <vendor-id> - <member>any</member> - </vendor-id> - <cve> - <member>any</member> - </cve> - <severity> - <member>critical</member> - </severity> - <threat-name>any</threat-name> - <host>any</host> - <category>any</category> - <packet-capture>yes</packet-capture> - <action> - <default/> - </action> - </entry> + + + + + + <vulnerability><entry name="MSS_IPS_Block"><rules><entry name="Critical"><vendor-id><member>any</member></vendor-id><cve><member>any</member></cve><severity><member>critical</member></severity><threat-name>any</threat-name><host>any</host><category>any</category><packet-capture>yes</packet-capture><action><default/></action></entry> - type=config&action=get - /config/shared/profiles/vulnerability + type=config&action=show
- //vulnerability/entry + @^\s \s*$@
- //entry/@name - @name="(?<object_id>.*)"@ + + @name="(?<object_id>.*)"@ - + /config/shared/profiles/vulnerability + + + + + + diff --git a/PALOALTO/VA/V7.0/.meta_Address b/PALOALTO/VA/V7.0/.meta_Address deleted file mode 100755 index d9e84080..00000000 --- a/PALOALTO/VA/V7.0/.meta_Address +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1412613823108 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1412613823092 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/V7.0/.meta_Filtering b/PALOALTO/VA/V7.0/.meta_Filtering deleted file mode 100755 index d9e84080..00000000 --- a/PALOALTO/VA/V7.0/.meta_Filtering +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1412613823108 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1412613823092 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/V7.0/.meta_Network b/PALOALTO/VA/V7.0/.meta_Network deleted file mode 100755 index d9e84080..00000000 --- a/PALOALTO/VA/V7.0/.meta_Network +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1412613823108 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1412613823092 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/V7.0/.meta_Security b/PALOALTO/VA/V7.0/.meta_Security deleted file mode 100755 index d9e84080..00000000 --- a/PALOALTO/VA/V7.0/.meta_Security +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1412613823108 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1412613823092 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/V7.0/.meta_URLF b/PALOALTO/VA/V7.0/.meta_URLF deleted file mode 100755 index d9e84080..00000000 --- a/PALOALTO/VA/V7.0/.meta_URLF +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1412613823108 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1412613823092 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/V7.0/Address/.meta_address_group.xml b/PALOALTO/VA/V7.0/Address/.meta_address_group.xml deleted file mode 100755 index 8a11a1fa..00000000 --- a/PALOALTO/VA/V7.0/Address/.meta_address_group.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438701067595 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - Address Group - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/V7.0/Address/.meta_address_ip_netmask.xml b/PALOALTO/VA/V7.0/Address/.meta_address_ip_netmask.xml deleted file mode 100755 index bf6a5dd2..00000000 --- a/PALOALTO/VA/V7.0/Address/.meta_address_ip_netmask.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438701067595 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - Address IP Netmask - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/V7.0/Address/.meta_address_ip_range.xml b/PALOALTO/VA/V7.0/Address/.meta_address_ip_range.xml deleted file mode 100755 index 6e4b8b93..00000000 --- a/PALOALTO/VA/V7.0/Address/.meta_address_ip_range.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438701067595 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - Address IP range - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/V7.0/Address/address_group.xml b/PALOALTO/VA/V7.0/Address/address_group.xml deleted file mode 100755 index d3220230..00000000 --- a/PALOALTO/VA/V7.0/Address/address_group.xml +++ /dev/null @@ -1,141 +0,0 @@ - - - xml - - - false - - object_id - false - Objects|Network - /images/repository/CommandDefinition/icons/AccesIpList.png - false - false - 1 - Address Groups - 10000 - - false - false - true - true - true - params._order - 5 - true - - - - - static - dynamic - - - - -
Static
- - - - - address_ip_netmask - address_ip_range - address_group - - - - - - -
Dynamic
- - - - - - - <address-group> -<entry name="Local"> -<static> -<member>Ip_For_nat</member> -<member>Ip_Lan_192.168.45.0</member> -</static> -</entry> -</address-group> - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address-group - -
- //address-group/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - //entry/* - @<(?<type>[^\s\>]+)>@ - - - //entry/dynamic/filter - @<filter>(?<filter>.*)</filter>@ - - - - //entry/static/member - - - //member - @<member>(?<address>.*)</member>@ - - - - - - - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address-group/entry[@name='{$params.object_id}'] - - <{$params.type}> -{if $params.type === "static"} -{foreach $params.addresses as $addr} -<member>{$addr.address}</member> -{/foreach} -{else} -<filter>{$params.filter}</filter> -{/if} -</{$params.type}> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address-group/entry[@name='{$params.object_id}'] - - <entry name='{$params.object_id}'> -<{$params.type}> -{if $params.type === "static"} -{foreach $params.addresses as $addr} -<member>{$addr.address}</member> -{/foreach} -{else} -<filter>{$params.filter}</filter> -{/if} -</{$params.type}> -</entry> - - - type=config&action=delete - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address-group/entry[@name='{$params.object_id}'] - - - - diff --git a/PALOALTO/VA/V7.0/Address/address_ip_netmask.xml b/PALOALTO/VA/V7.0/Address/address_ip_netmask.xml deleted file mode 100755 index 8bb6eba5..00000000 --- a/PALOALTO/VA/V7.0/Address/address_ip_netmask.xml +++ /dev/null @@ -1,87 +0,0 @@ - - - xml - false - IP Netmask object - object_id - false - Objects|Network|Addresses - /images/repository/CommandDefinition/icons/Network.png - true - false - 1 - IP Netmask - 50 - - false - false - true - true - true - params._order - 5 - true - - - - - - <result> - <address> - <entry name="Address_VLAN-20-IP"> - <ip-netmask>10.101.101.254/24</ip-netmask> - </entry> - <entry name="EES7"> - <ip-netmask>7.7.70.7/16</ip-netmask> - </entry> - </address> -</result> - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - - <ip-netmask>{$params.address}/{$params.masklen}</ip-netmask> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}']/ip-netmask - - <ip-netmask>{$params.address}/{$params.masklen}</ip-netmask> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - - - - - - type=config&action=get - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address - -
- //address/entry -
- - - @name="(?<object_id>.*)"@ - //entry/@name - - - @<ip-netmask[^>]*>(?<address>[^/]+)/(?<masklen>[^<]+)</ip-netmask>@ - //entry/ip-netmask - - - - - - - - diff --git a/PALOALTO/VA/V7.0/Address/address_ip_range.xml b/PALOALTO/VA/V7.0/Address/address_ip_range.xml deleted file mode 100755 index 5ee84fc3..00000000 --- a/PALOALTO/VA/V7.0/Address/address_ip_range.xml +++ /dev/null @@ -1,89 +0,0 @@ - - - xml - - - false - IP Range object - object_id - false - Objects|Network|Addresses - /images/repository/CommandDefinition/icons/Network.png - true - false - 1 - IP Range - 50 - - false - false - true - true - true - params._order - 5 - true - - - - - - <result> - <address> - <entry name="Address_VLAN-20-IP"> - <ip-netmask>10.101.101.254/24</ip-netmask> - </entry> - <entry name="EES7"> - <ip-netmask>7.7.70.7/16</ip-netmask> - </entry> - </address> -</result> - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - - <ip-range>{$params.startaddress}-{$params.endaddress}</ip-range> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}']/ip-range - - <ip-range>{$params.startaddress}-{$params.endaddress}</ip-range> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - - - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address - -
- //address/entry -
- - - @name="(?<object_id>.*)"@ - //entry/@name - - - - - //entry/ip-range - @<ip-range>(?<startaddress>[^-]+)-(?<endaddress>[^<]+)</ip-range>@ - - - - - - diff --git a/PALOALTO/VA/V7.0/Application/application.xml b/PALOALTO/VA/V7.0/Application/application.xml deleted file mode 100755 index 5a182cb7..00000000 --- a/PALOALTO/VA/V7.0/Application/application.xml +++ /dev/null @@ -1,63 +0,0 @@ - - - xml - false - Predefined application - object_id - false - Security Options - /images/repository/CommandDefinition/icons/longreach cpe.jpg - false - true - 1 - Application - 10 - - false - false - true - true - true - params._order - 0 - true - - - - <mgt-config> - <users> - <entry name="admin"> - <phash>fnRL/G5lXVMug</phash> - <permissions> - <role-based> - <superuser>yes</superuser> - </role-based> - </permissions> - </entry> - </users> -</mgt-config> - - - - - - - type=config&action=get - /config/predefined/application - -
- //application/entry -
- - - @name="(?<object_id>.*)"@ - //entry/@name - - - - - - - - - diff --git a/PALOALTO/VA/V7.0/Filtering/.meta_profile_group.xml b/PALOALTO/VA/V7.0/Filtering/.meta_profile_group.xml deleted file mode 100755 index da75365a..00000000 --- a/PALOALTO/VA/V7.0/Filtering/.meta_profile_group.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438701067595 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - Profile Group - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/V7.0/Filtering/profile_group.xml b/PALOALTO/VA/V7.0/Filtering/profile_group.xml deleted file mode 100755 index fedf92f6..00000000 --- a/PALOALTO/VA/V7.0/Filtering/profile_group.xml +++ /dev/null @@ -1,213 +0,0 @@ - - - xml - - - false - - object_id - false - Objects - /images/repository/CommandDefinition/icons/Shield.png - false - false - 2 - Security Profile Group - 1 - - false - false - true - true - true - params._order - 5 - - - - - - - - urlf_user_profile - - - - - - - - Rest API Url -/api/?type=config&action=get&xpath=/config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profile-group - -<profile-group > -<entry name="HGU"> - -<virus> -<member admin="admin" time="2015/08/03 07:28:46">default</member> -</virus> - -<spyware> -<member>strict</member> -</spyware> - -<vulnerability> -<member>strict</member> -</vulnerability> - -<url-filtering> -<member>Protection</member> -</url-filtering> - -<file-blocking> -<member>Fileblocking</member> -</file-blocking> - -</entry> -</profile-group> - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profile-group/entry[@name='{$params.object_id}'] - - {if !empty($params.virus)} -<virus> -<member>{$params.virus}</member> -</virus> -{/if} -{if !empty($params.spyware)} -<spyware> -<member>{$params.spyware}</member> -</spyware> -{/if} -{if !empty($params.vulnerability)} -<vulnerability> -<member>{$params.vulnerability}</member> -</vulnerability> -{/if} -{if !empty($params.url_filtering)} -<url-filtering> -<member>{$params.url_filtering}</member> -</url-filtering> -{/if} -{if !empty($params.file_blocking)} -<file-blocking> -<member>{$params.file_blocking}</member> -</file-blocking> -{/if} -{if !empty($params.data_filtering)} -<data-filtering> -<member>{$params.data_filtering}</member> -</data-filtering> -{/if} -{if !empty($params.wildfire_analysis)} -<wildfire-analysis> -<member>{$params.wildfire_analysis}</member> -</wildfire-analysis> -{/if} - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profile-group/entry[@name='{$params.object_id}'] - - <entry name="{$params.object_id}"> -{if !empty($params.virus)} -<virus> -<member>{$params.virus}</member> -</virus> -{/if} -{if !empty($params.spyware)} -<spyware> -<member>{$params.spyware}</member> -</spyware> -{/if} -{if !empty($params.vulnerability)} -<vulnerability> -<member>{$params.vulnerability}</member> -</vulnerability> -{/if} -{if !empty($params.url_filtering)} -<url-filtering> -<member>{$params.url_filtering}</member> -</url-filtering> -{/if} -{if !empty($params.file_blocking)} -<file-blocking> -<member>{$params.file_blocking}</member> -</file-blocking> -{/if} -{if !empty($params.data_filtering)} -<data-filtering> -<member>{$params.data_filtering}</member> -</data-filtering> -{/if} -{if !empty($params.wildfire_analysis)} -<wildfire-analysis> -<member>{$params.wildfire_analysis}</member> -</wildfire-analysis> -{/if} -</entry> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profile-group/entry[@name='{$params.object_id}'] - - - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profile-group - -
- //profile-group/entry -
- - - //entry/file-blocking - @<member>(?<file_blocking>.*)</member>@ - - - //entry/url-filtering - @<member>(?<url_filtering>.*)</member>@ - - - //entry/vulnerability - @<member>(?<vulnerability>.*)</member>@ - - - //entry/spyware - @<member>(?<spyware>.*)</member>@ - - - //entry/@name - @name="(?<object_id>.*)"@ - - - - - - - - //entry/virus - @<member>(?<virus>.*)</member>@ - - - //entry/data-filtering - @<member>(?<data_filtering>.*)</member>@ - - - //entry/wildfire-analysis - @<member>(?<wildfire_analysis>.*)</member>@ - - - - - - diff --git a/PALOALTO/VA/V7.0/Network/.meta_Virtual-wire b/PALOALTO/VA/V7.0/Network/.meta_Virtual-wire deleted file mode 100755 index d9e84080..00000000 --- a/PALOALTO/VA/V7.0/Network/.meta_Virtual-wire +++ /dev/null @@ -1,40 +0,0 @@ - - - - - MODEL - VA - - - DATE_MODIFICATION - 1412613823108 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1412613823092 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TYPE - DIRECTORY - - - TAG - - - - diff --git a/PALOALTO/VA/V7.0/Network/.meta_zone.xml b/PALOALTO/VA/V7.0/Network/.meta_zone.xml deleted file mode 100755 index a5f588b7..00000000 --- a/PALOALTO/VA/V7.0/Network/.meta_zone.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1583751453037 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MODEL - VA - - - FILE_TYPE - text - - - TAG - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/V7.0/Network/zone.xml b/PALOALTO/VA/V7.0/Network/zone.xml deleted file mode 100755 index 03f655d5..00000000 --- a/PALOALTO/VA/V7.0/Network/zone.xml +++ /dev/null @@ -1,110 +0,0 @@ - - - xml - - - false - - object_id - false - Network - /images/repository/CommandDefinition/icons/web cluster.jpg - false - false - 1 - 0 - Zone - 10000 - - false - true - true - true - params._order - 5 - - - - - layer3 - layer2 - tap - virtual-wire - - - - -
Members
- - - ethernet - - - - - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/zone - -
- //zone/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - //entry/network/* - @<(?<zone_type>[^\s\>]+).*>@ - - - - //entry/network/*/member - - - //member - @<member>(?<member>.*)</member>@ - - - - - - - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/zone/entry[@name='{$params.object_id}']/network - - <{$params.zone_type}> -{foreach $params.members as $membrs} -<member>{$membrs.member}</member> -{/foreach} -</{$params.zone_type}> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/zone/entry[@name='{$params.object_id}'] - - - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/zone/entry[@name='{$params.object_id}']/network - - <{$params.zone_type}> -{foreach $params.members as $membrs} -<member>{$membrs.member}</member> -{/foreach} -</{$params.zone_type}> - - - diff --git a/PALOALTO/VA/V7.0/Security/.meta_policy_app.xml b/PALOALTO/VA/V7.0/Security/.meta_policy_app.xml deleted file mode 100755 index 34a70ee5..00000000 --- a/PALOALTO/VA/V7.0/Security/.meta_policy_app.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438701067595 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - Policy App - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/V7.0/Security/.meta_schedule.xml b/PALOALTO/VA/V7.0/Security/.meta_schedule.xml deleted file mode 100755 index 65738008..00000000 --- a/PALOALTO/VA/V7.0/Security/.meta_schedule.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438701067595 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - Schedule - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/V7.0/Security/policy_app.xml b/PALOALTO/VA/V7.0/Security/policy_app.xml deleted file mode 100755 index 8c7a3441..00000000 --- a/PALOALTO/VA/V7.0/Security/policy_app.xml +++ /dev/null @@ -1,442 +0,0 @@ - - - xml - - - true - Advanced FW policies - object_id - false - Security - /images/repository/CommandDefinition/icons/cisco asa 5500.jpg - false - false - 1 - Policies - 5 - - true - false - true - true - true - params._order - 5 - true - - - - -
Source
- - - zone - - - - -
Source
- - - address_ip_netmask - address_ip_range - address_group - regions - - - - -
User
- - - user_group - users - - - - - no-hip - any - - -
User
- - - hip_profiles - - - - -
Destination
- - - zone - - - - -
Destination
- - - address_ip_netmask - address_ip_range - address_group - regions - - - - - application - - - - - application-default - any - - -
Service/URL Category
- - - services - predefined_services - - - - -
Service/URL Category
- - - url_categories - - - - - allow - deny - drop - reset-server - reset-client - reset-both - - - - - profile_group - - - - - schedule - - - - - yes - no - - - - - yes - no - - - - - - <rulebase> - <security> - <rules> - <entry name="Fw-Pascal"> - <from> - <member>Trust</member> - </from> - <to> - <member>untrust</member> - </to> - <source> - <member>Ip_Lan_192.168.45.0</member> - </source> - <destination> - <member>any</member> - </destination> - <source-user> - <member>any</member> - </source-user> - <category> - <member>any</member> - </category> - <application> - <member>any</member> - </application> - <service> - <member>service-http</member> - <member>service-https</member> - </service> - <hip-profiles> - <member>any</member> - </hip-profiles> - <action>allow</action> - <tag> - <member>Trust</member> - </tag> - <schedule>EES2</schedule> - <profile-setting> - <group> - <member>EESProfGrp</member> - </group> - </profile-setting> - </entry> - </rules> - </security> -</rulebase> - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules - -
- //rules/entry -
- - - - //entry/profile-setting/group/member - @<member>(?<profile_group>.*)</member>@ - - - - //entry/application/member - - - //member - @<member>(?<application>.*)</member>@ - - - - - - //entry/@name - @name="(?<object_id>.*)"@ - - - - //entry/hip-profiles/member - - - //member - @<member>(?<hip_profile>.*)</member>@ - - - - - - - //entry/category/member - - - //member - @<member>(?<category>.*)</member>@ - - - - - - //entry/from/member - @<member>(?<zone_from>.*)</member>@ - - - //entry/to/member - @<member>(?<zone_to>.*)</member>@ - - - //entry/source/member - @<member>(?<src_address>.*)</member>@ - - - //entry/destination/member - @<member>(?<dst_address>.*)</member>@ - - - //entry/action - @<action>(?<action>.*)</action>@ - - - //entry/log-start - @<log-start>(?<log_start>.*)</log-start>@ - - - //entry/log-end - @<log-end>(?<log_end>.*)</log-end>@ - - - - //entry/source-user - - - //member - @<member>(?<users>.*)</member>@ - - - - - - //entry/schedule - @<schedule>(?<schedule>.*)</schedule>@ - - - - //entry/service/member - - - //member - @<member>(?<service>.*)</member>@ - - - - - - - - - - - - - - - - {if !empty($params._prev)} -type=config&action=move&where=after&dst={urlencode url=$params._prev} -{elseif !empty($params._next)} -type=config&action=move&where=before&dst={urlencode url=$params._next} -{else} -type=config&action=edit -{/if} - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - - {if empty($params._prev) && empty($params._next)} -<entry name="{$params.object_id}"> -<from> -<member>{$params.zone_from}</member> -</from> -<to> -<member>{$params.zone_to}</member> -</to> -<source> -<member>{$params.src_address}</member> -</source> -<destination> -<member>{$params.dst_address}</member> -</destination> -<source-user> -{foreach $params.users as $user} -<member>{$user.users}</member> -{/foreach} -</source-user> -<category> -<member>any</member> -</category> -<application> -{foreach $params.application as $app} -<member>{$app.application}</member> -{/foreach} -</application> -<service> -{foreach $params.services as $srv} -<member>{$srv.service}</member> -{/foreach} -</service> -<hip-profiles> -<member>any</member> -</hip-profiles> -<action>{$params.action}</action> -{if !empty($params.profile_group)} -<profile-setting> -<group> -<member>{$params.profile_group}</member> -</group> -</profile-setting> -{/if} -{if !empty($params.schedule)} -<schedule>{$params.schedule}</schedule> -{/if} -{if !empty($params.log_start)} -<log-start>{$params.log_start}</log-start> -{/if} -{if !empty($params.log_end)} -<log-end>{$params.log_end}</log-end> -{/if} -</entry> -{/if} - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - - <from> -<member>{$params.zone_from}</member> -</from> -<to> -<member>{$params.zone_to}</member> -</to> -<source> -<member>{$params.src_address}</member> -</source> -<destination> -<member>{$params.dst_address}</member> -</destination> -<source-user> -{foreach $params.users as $user} -<member>{$user.users}</member> -{/foreach} -</source-user> -<category> -<member>any</member> -</category> -<application> -{foreach $params.application as $app} -<member>{$app.application}</member> -{/foreach} -</application> -<service> -{foreach $params.services as $srv} -<member>{$srv.service}</member> -{/foreach} -</service> -<hip-profiles> -<member>any</member> -</hip-profiles> -<action>{$params.action}</action> -{if !empty($params.profile_group)} -<profile-setting> -<group> -<member>{$params.profile_group}</member> -</group> -</profile-setting> -{/if} -{if !empty($params.schedule)} -<schedule>{$params.schedule}</schedule> -{/if} -{if !empty($params.log_start)} -<log-start>{$params.log_start}</log-start> -{/if} -{if !empty($params.log_end)} -<log-end>{$params.log_end}</log-end> -{/if} - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/V7.0/Security/schedule.xml b/PALOALTO/VA/V7.0/Security/schedule.xml deleted file mode 100755 index ab01213a..00000000 --- a/PALOALTO/VA/V7.0/Security/schedule.xml +++ /dev/null @@ -1,1010 +0,0 @@ - - - xml - - - false - Policy Schedule - object_id - false - Objects - /images/repository/CommandDefinition/icons/Protection.png - false - false - 1 - Schedules - 40 - - false - false - true - true - true - params._order - 5 - - - - - daily - weekly - non-recurring - - - - - - - sunday - monday - tuesday - wednesday - thursday - friday - saturday - - -
times
- - - - - - - - -
times
- - - - - - - 00:00 - 00:15 - 00:30 - 00:45 - 01:00 - 01:15 - 01:30 - 01:45 - 02:00 - 02:15 - 02:30 - 02:45 - 03:00 - 03:15 - 03:30 - 03:45 - 04:00 - 04:15 - 04:30 - 04:45 - 05:00 - 05:15 - 05:30 - 05:45 - 06:00 - 06:15 - 06:30 - 06:45 - 07:00 - 07:15 - 07:30 - 07:45 - 08:00 - 08:15 - 08:30 - 08:45 - 09:00 - 09:15 - 09:30 - 09:45 - 10:00 - 10:15 - 10:30 - 10:45 - 11:00 - 11:15 - 11:30 - 11:45 - 12:00 - 12:15 - 12:30 - 12:45 - 13:00 - 13:15 - 13:30 - 13:45 - 14:00 - 14:15 - 14:30 - 14:45 - 15:00 - 15:15 - 15:30 - 15:45 - 16:00 - 16:15 - 16:30 - 16:45 - 17:00 - 17:15 - 17:30 - 17:45 - 18:00 - 18:15 - 18:30 - 18:45 - 19:00 - 19:15 - 19:30 - 19:45 - 20:00 - 20:15 - 20:30 - 20:45 - 21:00 - 21:15 - 21:30 - 21:45 - 22:00 - 22:15 - 22:30 - 22:45 - 23:00 - 23:15 - 23:30 - 23:45 - - - - - - -
times
- - - - - - - 00:00 - 00:15 - 00:30 - 00:45 - 01:00 - 01:15 - 01:30 - 01:45 - 02:00 - 02:15 - 02:30 - 02:45 - 03:00 - 03:15 - 03:30 - 03:45 - 04:00 - 04:15 - 04:30 - 04:45 - 05:00 - 05:15 - 05:30 - 05:45 - 06:00 - 06:15 - 06:30 - 06:45 - 07:00 - 07:15 - 07:30 - 07:45 - 08:00 - 08:15 - 08:30 - 08:45 - 09:00 - 09:15 - 09:30 - 09:45 - 10:00 - 10:15 - 10:30 - 10:45 - 11:00 - 11:15 - 11:30 - 11:45 - 12:00 - 12:15 - 12:30 - 12:45 - 13:00 - 13:15 - 13:30 - 13:45 - 14:00 - 14:15 - 14:30 - 14:45 - 15:00 - 15:15 - 15:30 - 15:45 - 16:00 - 16:15 - 16:30 - 16:45 - 17:00 - 17:15 - 17:30 - 17:45 - 18:00 - 18:15 - 18:30 - 18:45 - 19:00 - 19:15 - 19:30 - 19:45 - 20:00 - 20:15 - 20:30 - 20:45 - 21:00 - 21:15 - 21:30 - 21:45 - 22:00 - 22:15 - 22:30 - 22:45 - 23:00 - 23:15 - 23:30 - 23:45 - - - - - 00:00 - 00:15 - 00:30 - 00:45 - 01:00 - 01:15 - 01:30 - 01:45 - 02:00 - 02:15 - 02:30 - 02:45 - 03:00 - 03:15 - 03:30 - 03:45 - 04:00 - 04:15 - 04:30 - 04:45 - 05:00 - 05:15 - 05:30 - 05:45 - 06:00 - 06:15 - 06:30 - 06:45 - 07:00 - 07:15 - 07:30 - 07:45 - 08:00 - 08:15 - 08:30 - 08:45 - 09:00 - 09:15 - 09:30 - 09:45 - 10:00 - 10:15 - 10:30 - 10:45 - 11:00 - 11:15 - 11:30 - 11:45 - 12:00 - 12:15 - 12:30 - 12:45 - 13:00 - 13:15 - 13:30 - 13:45 - 14:00 - 14:15 - 14:30 - 14:45 - 15:00 - 15:15 - 15:30 - 15:45 - 16:00 - 16:15 - 16:30 - 16:45 - 17:00 - 17:15 - 17:30 - 17:45 - 18:00 - 18:15 - 18:30 - 18:45 - 19:00 - 19:15 - 19:30 - 19:45 - 20:00 - 20:15 - 20:30 - 20:45 - 21:00 - 21:15 - 21:30 - 21:45 - 22:00 - 22:15 - 22:30 - 22:45 - 23:00 - 23:15 - 23:30 - 23:45 - - -
times
- - - - - 00:00 - 00:15 - 00:30 - 00:45 - 01:00 - 01:15 - 01:30 - 01:45 - 02:00 - 02:15 - 02:30 - 02:45 - 03:00 - 03:15 - 03:30 - 03:45 - 04:00 - 04:15 - 04:30 - 04:45 - 05:00 - 05:15 - 05:30 - 05:45 - 06:00 - 06:15 - 06:30 - 06:45 - 07:00 - 07:15 - 07:30 - 07:45 - 08:00 - 08:15 - 08:30 - 08:45 - 09:00 - 09:15 - 09:30 - 09:45 - 10:00 - 10:15 - 10:30 - 10:45 - 11:00 - 11:15 - 11:30 - 11:45 - 12:00 - 12:15 - 12:30 - 12:45 - 13:00 - 13:15 - 13:30 - 13:45 - 14:00 - 14:15 - 14:30 - 14:45 - 15:00 - 15:15 - 15:30 - 15:45 - 16:00 - 16:15 - 16:30 - 16:45 - 17:00 - 17:15 - 17:30 - 17:45 - 18:00 - 18:15 - 18:30 - 18:45 - 19:00 - 19:15 - 19:30 - 19:45 - 20:00 - 20:15 - 20:30 - 20:45 - 21:00 - 21:15 - 21:30 - 21:45 - 22:00 - 22:15 - 22:30 - 22:45 - 23:00 - 23:15 - 23:30 - 23:45 - - -
times
- - - - - 00:00 - 00:15 - 00:30 - 00:45 - 01:00 - 01:15 - 01:30 - 01:45 - 02:00 - 02:15 - 02:30 - 02:45 - 03:00 - 03:15 - 03:30 - 03:45 - 04:00 - 04:15 - 04:30 - 04:45 - 05:00 - 05:15 - 05:30 - 05:45 - 06:00 - 06:15 - 06:30 - 06:45 - 07:00 - 07:15 - 07:30 - 07:45 - 08:00 - 08:15 - 08:30 - 08:45 - 09:00 - 09:15 - 09:30 - 09:45 - 10:00 - 10:15 - 10:30 - 10:45 - 11:00 - 11:15 - 11:30 - 11:45 - 12:00 - 12:15 - 12:30 - 12:45 - 13:00 - 13:15 - 13:30 - 13:45 - 14:00 - 14:15 - 14:30 - 14:45 - 15:00 - 15:15 - 15:30 - 15:45 - 16:00 - 16:15 - 16:30 - 16:45 - 17:00 - 17:15 - 17:30 - 17:45 - 18:00 - 18:15 - 18:30 - 18:45 - 19:00 - 19:15 - 19:30 - 19:45 - 20:00 - 20:15 - 20:30 - 20:45 - 21:00 - 21:15 - 21:30 - 21:45 - 22:00 - 22:15 - 22:30 - 22:45 - 23:00 - 23:15 - 23:30 - 23:45 - - -
times
- - - - - - -
times_monday
- - - - -
times_monday
- - - - -
times_tuesday
- - - - -
times_tuesday
- - - - -
times_wednesday
- - - - -
times_wednesday
- - - - -
times_thursday
- - - - -
times_thursday
- - - - -
times_friday
- - - - -
times_friday
- - - - -
times_saturday
- - - - -
times_saturday
- - - - -
times_sunday
- - - - -
times_sunday
- - - - -
times_nr
- - - - -
times_nr
- - - - -
times_nr
- - - - -
times_nr
- - - - set schedule <name> - { - non-recurring <value> | - recurring - { - daily <value> | - weekly {friday | monday | saturday | sunday | thursday | tuesday | - wednesday} <value> - } -} - -<name> — Schedule to configure -+ non-recurring — Non-recurring date-time range specification (YYYY/MM/DD@hh:mm-YYYY/MM/DD@hh:mm; e.g. 2006/08/01@10:00-2007/12/31@23:59), or list of values enclosed in [ ] - -> recurring — Recurring period - + daily — Daily time range specification (hh:mm-hh:mm; e.g. 10:00-23:59), or list of values enclosed in [ ] - > weekly — Week day and time range specification (hh:mm-hh:mm; e.g. 10:00-23:59), or list of values enclosed in [ ] - - - <schedule> - <entry name="EES"> - <recurring> - <daily> - <member>01:00-02:00</member> - <member>12:00-13:00</member> - </daily> - </recurring> - </entry> - <entry name="EES2"> - <recurring> - <weekly> - <monday> - <member>01:15-00:45</member> - </monday> - <monday> - <member>00:00-00:15</member> - </monday> - <thursday> - <member>03:15-21:45</member> - </thursday> - </weekly> - </recurring> - </entry> - <entry name="EES3"> - <non-recurring> - <member>2015/07/29@02:00-2015/07/30@23:15</member> - <member>2016/07/19@00:00-2017/02/28@12:00</member> - </non-recurring> - </entry> - </schedule> - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/schedule/entry[@name='{$params.object_id}'] - - <schedule-type> -{if $params.recurrence == "daily"} -<recurring> -<daily> -{foreach $params.times as $t} -<member>{$t.start_time}-{$t.end_time}</member> -{/foreach} -</daily> -</recurring> -{elseif $params.recurrence == "weekly"} -<recurring> -<weekly> -{$i.monday=0} -{$i.tuesday=0} -{$i.wednesday=0} -{$i.thursday=0} -{$i.friday=0} -{$i.saturday=0} -{$i.sunday=0} -{foreach $params.times as $t} -{$day=$t.day_of_the_week} -{$index=$i.$day} -{$w.$day.$index.start_time=$t.start_time} -{$w.$day.$index.end_time=$t.end_time} -{$i.$day=$index+1} -{/foreach} -{foreach $w as $day => $tl} -<{$day}> -{foreach $tl as $t} -<member>{$t.start_time}-{$t.end_time}</member> -{/foreach} -</{$day}> -{/foreach} -</weekly> -</recurring> -{else} -<non-recurring> -{foreach $params.times as $t} -<member>{$t.start_date}@{$t.start_time}-{$t.end_date}@{$t.end_time}</member> -{/foreach} -</non-recurring> -{/if} -</schedule-type> - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/schedule - -
- //schedule/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - //entry/schedule-type/recurring/daily - @<(?<recurrence>[^>]+)>@ - - - - //entry/schedule-type/recurring/daily/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - //entry/schedule-type/recurring/weekly - @<(?<recurrence>[^>/]+)/?>@ - - - - //entry/schedule-type/recurring/weekly/monday/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - - //entry/schedule-type/recurring/weekly/tuesday/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - - //entry/schedule-type/recurring/weekly/wednesday/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - - //entry/schedule-type/recurring/weekly/thursday/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - - //entry/schedule-type/recurring/weekly/friday/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - - //entry/schedule-type/recurring/weekly/saturday/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - - //entry/schedule-type/recurring/weekly/sunday/member - - - //member - @<member>(?<start_time>.*)-(?<end_time>.*)</member>@ - - - - - - //entry/schedule-type/non-recurring - @<(?<recurrence>[^>]+)>@ - - - - //entry/schedule-type/non-recurring/member - - - //member - @<member>(?<start_date>.*)\@(?<start_time>.*)-(?<end_date>.*)\@(?<end_time>.*)</member>@ - - - - - - - {assign var="i" value=0} -{foreach $params.times_monday as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.day_of_the_week" value="monday"} -{assign var="i" value=$i+1} -{/foreach} -{foreach $params.times_tuesday as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.day_of_the_week" value="tuesday"} -{assign var="i" value=$i+1} -{/foreach} -{foreach $params.times_wednesday as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.day_of_the_week" value="wednesday"} -{assign var="i" value=$i+1} -{/foreach} -{foreach $params.times_thursday as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.day_of_the_week" value="thursday"} -{assign var="i" value=$i+1} -{/foreach} -{foreach $params.times_friday as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.day_of_the_week" value="friday"} -{assign var="i" value=$i+1} -{/foreach} -{foreach $params.times_saturday as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.day_of_the_week" value="saturday"} -{assign var="i" value=$i+1} -{/foreach} -{foreach $params.times_sunday as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.day_of_the_week" value="sunday"} -{assign var="i" value=$i+1} -{/foreach} -{foreach $params.times_nr as $t} -{assign_object_variable var="times.$i.start_time" value=$t.start_time} -{assign_object_variable var="times.$i.start_date" value=$t.start_date} -{assign_object_variable var="times.$i.end_time" value=$t.end_time} -{assign_object_variable var="times.$i.end_date" value=$t.end_date} -{assign var="i" value=$i+1} -{/foreach} - - - type=config&action=edit - - {if $params.recurrence == "non-recurring"} -/config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/schedule/entry[@name='{$params.object_id}']/schedule-type/non-recurring -{else} -/config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/schedule/entry[@name='{$params.object_id}']/schedule-type/recurring -{/if} - - {if $params.recurrence == "daily"} -<recurring> -<daily> -{foreach $params.times as $t} -<member>{$t.start_time}-{$t.end_time}</member> -{/foreach} -</daily> -</recurring> -{elseif $params.recurrence == "weekly"} -<recurring> -<weekly> -{$i.monday=0} -{$i.tuesday=0} -{$i.wednesday=0} -{$i.thursday=0} -{$i.friday=0} -{$i.saturday=0} -{$i.sunday=0} -{foreach $params.times as $t} -{$day=$t.day_of_the_week} -{$index=$i.$day} -{$w.$day.$index.start_time=$t.start_time} -{$w.$day.$index.end_time=$t.end_time} -{$i.$day=$index+1} -{/foreach} -{foreach $w as $day => $tl} -<{$day}> -{foreach $tl as $t} -<member>{$t.start_time}-{$t.end_time}</member> -{/foreach} -</{$day}> -{/foreach} -</weekly> -</recurring> -{else} -<non-recurring> -{foreach $params.times as $t} -<member>{$t.start_date}@{$t.start_time}-{$t.end_date}@{$t.end_time}</member> -{/foreach} -</non-recurring> -{/if} - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/schedule/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/V7.0/System/.meta_jobs.xml b/PALOALTO/VA/V7.0/System/.meta_jobs.xml deleted file mode 100755 index c210a34c..00000000 --- a/PALOALTO/VA/V7.0/System/.meta_jobs.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438701067595 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - Jobs - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/V7.0/System/.meta_timezone.xml b/PALOALTO/VA/V7.0/System/.meta_timezone.xml deleted file mode 100755 index 7646709f..00000000 --- a/PALOALTO/VA/V7.0/System/.meta_timezone.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438701067595 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - TimeZones - - - TYPE - UPLOAD - - - \ No newline at end of file diff --git a/PALOALTO/VA/V7.0/URLF/.meta_urlf_user_profile.xml b/PALOALTO/VA/V7.0/URLF/.meta_urlf_user_profile.xml deleted file mode 100755 index 4d9b9135..00000000 --- a/PALOALTO/VA/V7.0/URLF/.meta_urlf_user_profile.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438701067595 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - URLF User Profile - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/V7.0/URLF/.meta_user_profile.xml b/PALOALTO/VA/V7.0/URLF/.meta_user_profile.xml deleted file mode 100755 index 4d9b9135..00000000 --- a/PALOALTO/VA/V7.0/URLF/.meta_user_profile.xml +++ /dev/null @@ -1,44 +0,0 @@ - - - - - MODEL - VA - - - FILE_TYPE - text - - - DATE_MODIFICATION - 1438701067595 - - - COMMENT - - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MANUFACTURER - - - CONFIGURATION_FILTER - - - - TAG - URLF User Profile - - - TYPE - UPLOAD - - - diff --git a/PALOALTO/VA/V7.0/URLF/urlf_user_profile.xml b/PALOALTO/VA/V7.0/URLF/urlf_user_profile.xml deleted file mode 100755 index 71817cd5..00000000 --- a/PALOALTO/VA/V7.0/URLF/urlf_user_profile.xml +++ /dev/null @@ -1,753 +0,0 @@ - - - xml - - - false - - object_id - false - Objects|Security Profiles - /images/repository/CommandDefinition/icons/lan to lan.jpg - false - false - 1 - URL Filtering Profile - 5 - - false - false - true - true - true - params._order - 5 - true - - - - - allow - block - - - - - no - yes - - - - - no - yes - - - - - no - yes - - - - - - abortion - abused-drugs - adult - alcohol-and-tobacco - auctions - business-and-economy - computer-and-internet-info - content-delivery-networks - dating - educational-institutions - entertainment-and-arts - financial-services - gambling - games - government - hacking - health-and-medicine - home-and-garden - hunting-and-fishing - internet-communications-and-telephony - internet-portals - job-search - legal - malware - military - motor-vehicles - music - news - not-resolved - nudity - online-storage-and-backup - parked - peer-to-peer - personal-sites-and-blogs - philosophy-and-political-advocacy - phishing - private-ip-addresses - proxy-avoidance-and-anonymizers - questionable - real-estate - recreation-and-hobbies - reference-and-research - religion - search-engines - sex-education - shareware-and-freeware - shopping - social-networking - society - sports - stock-advice-and-tools - streaming-media - swimsuits-and-intimate-apparel - training-and-tools - translation - travel - unknown - weapons - web-advertisements - web-based-email - web-hosting - - - params.block.0.member - params.continue.0.member - params.allow.0.member - params.override.0.member - - - - - peer-to-peer - computer-and-internet-info - auctions - legal - online-storage-and-backup - internet-communications-and-telephony - web-advertisements - web-based-email - travel - motor-vehicles - health-and-medicine - translation - questionable - content-delivery-networks - stock-advice-and-tools - unknown - gambling - military - home-and-garden - educational-institutions - personal-sites-and-blogs - social-networking - entertainment-and-arts - alcohol-and-tobacco - real-estate - games - reference-and-research - religion - web-hosting - hunting-and-fishing - abused-drugs - job-search - weapons - sports - search-engines - hacking - proxy-avoidance-and-anonymizers - recreation-and-hobbies - abortion - philosophy-and-political-advocacy - dating - training-and-tools - parked - sex-education - shareware-and-freeware - swimsuits-and-intimate-apparel - shopping - music - phishing - not-resolved - financial-services - private-ip-addresses - streaming-media - society - adult - business-and-economy - internet-portals - news - nudity - government - malware - - - params.alert.0.member - params.block.0.member - params.continue.0.member - params.override.0.member - - - - - abortion - abused-drugs - adult - alcohol-and-tobacco - auctions - business-and-economy - computer-and-internet-info - content-delivery-networks - dating - educational-institutions - entertainment-and-arts - financial-services - gambling - games - government - hacking - health-and-medicine - home-and-garden - hunting-and-fishing - internet-communications-and-telephony - internet-portals - job-search - legal - malware - military - motor-vehicles - music - news - not-resolved - nudity - online-storage-and-backup - parked - peer-to-peer - personal-sites-and-blogs - philosophy-and-political-advocacy - phishing - private-ip-addresses - proxy-avoidance-and-anonymizers - questionable - real-estate - recreation-and-hobbies - reference-and-research - religion - search-engines - sex-education - shareware-and-freeware - shopping - social-networking - society - sports - stock-advice-and-tools - streaming-media - swimsuits-and-intimate-apparel - training-and-tools - translation - travel - unknown - weapons - web-advertisements - web-based-email - web-hosting - - - params.alert.0.member - params.continue.0.member - params.allow.0.member - params.override.0.member - - - - - abortion - abused-drugs - adult - alcohol-and-tobacco - auctions - business-and-economy - computer-and-internet-info - content-delivery-networks - dating - educational-institutions - entertainment-and-arts - financial-services - gambling - games - government - hacking - health-and-medicine - home-and-garden - hunting-and-fishing - internet-communications-and-telephony - internet-portals - job-search - legal - malware - military - motor-vehicles - music - news - not-resolved - nudity - online-storage-and-backup - parked - peer-to-peer - personal-sites-and-blogs - philosophy-and-political-advocacy - phishing - private-ip-addresses - proxy-avoidance-and-anonymizers - questionable - real-estate - recreation-and-hobbies - reference-and-research - religion - search-engines - sex-education - shareware-and-freeware - shopping - social-networking - society - sports - stock-advice-and-tools - streaming-media - swimsuits-and-intimate-apparel - training-and-tools - translation - travel - unknown - weapons - web-advertisements - web-based-email - web-hosting - - - params.block.0.member - params.alert.0.member - params.allow.0.member - params.override.0.member - - - - - translation - questionable - religion - perked - online-storage-and-backup - adult - society - weapons - abused-drugs - job-search - internet-portals - proxy-avoidance-and-anonymizers - legal - dating - news - web-advertisements - games - phishing - computer-and-internet-info - not-resolved - recreation-and-hobbies - music - sex-education - hacking - financial-services - web-hosting - shopping - hunting-and-fishing - motor-vehicles - business-and-economy - travel - shareware-and-freeware - educational-institutions - nudity - philosophy-and-political-advocacy - entertainment-and-arts - personal-sites-and-blogs - military - malware - streaming-media - alcohol-and-tobacco - stock-advice-and-tools - web-based-email - internet-communications-and-telephony - sports - abortion - real-estate - health-and-medicine - peer-to-peer - home-and-garden - auctions - government - reference-and-research - search-engine - swimsuits-and-intimate-apparel - gambling - unknown - content-delivery-networks - training-and-tools - private-ip-addresses - social-networking - - - params.allow.0.member - params.alert.0.member - params.block.0.member - params.continue.0.member - - - - - - - alert - block - continue - override - - - - <url-filtering> - <entry name="USER_URL_Config_VM-vFW"> - <license-expired>allow</license-expired> - <enable-container-page>yes</enable-container-page> - <dynamic-url>yes</dynamic-url> - <log-container-page-only>yes</log-container-page-only> - <description>VM &gt; vFW</description> - <alert> - <member>abortion</member> - <member>adult-and-pornography</member> - <member>alcohol-and-tobacco</member> - <member>auctions</member> - <member>cheating</member> - <member>computer-and-internet-security</member> - <member>content-delivery-networks</member> - <member>cult-and-occult</member> - <member>dating</member> - <member>dead-sites</member> - <member>dynamically-generated-content</member> - <member>educational-institutions</member> - <member>entertainment-and-arts</member> - <member>fashion-and-beauty</member> - <member>financial-services</member> - <member>games</member> - <member>government</member> - <member>gross</member> - <member>hacking</member> - <member>hate-and-racism</member> - <member>health-and-medicine</member> - <member>home-and-garden</member> - <member>hunting-and-fishing</member> - <member>illegal</member> - <member>image-and-video-search</member> - <member>individual-stock-advice-and-tools</member> - <member>internet-communications</member> - <member>internet-portals</member> - <member>job-search</member> - <member>kids</member> - <member>legal</member> - <member>local-information</member> - <member>marijuana</member> - <member>military</member> - <member>motor-vehicles</member> - <member>news-and-media</member> - <member>not-resolved</member> - <member>nudity</member> - <member>online-gambling</member> - <member>online-greeting-cards</member> - <member>online-music</member> - <member>online-personal-storage</member> - <member>pay-to-surf</member> - <member>personal-sites-and-blogs</member> - <member>philosophy-and-political-advocacy</member> - <member>private-ip-addresses</member> - <member>questionable</member> - <member>real-estate</member> - <member>recreation-and-hobbies</member> - <member>reference-and-research</member> - <member>religion</member> - <member>search-engines</member> - <member>sex-education</member> - <member>shareware-and-freeware</member> - <member>shopping</member> - <member>social-networking</member> - <member>society</member> - <member>sports</member> - <member>streaming-media</member> - <member>swimsuits-and-intimate-apparel</member> - <member>training-and-tools</member> - <member>translation</member> - <member>travel</member> - <member>unknown</member> - <member>violence</member> - <member>weapons</member> - <member>web-advertisements</member> - <member>web-based-email</member> - <member>web-hosting</member> - </alert> - <block> - <member>abused-drugs</member> - <member>bot-nets</member> - <member>confirmed-spam-sources</member> - <member>keyloggers-and-monitoring</member> - <member>malware-sites</member> - <member>open-http-proxies</member> - <member>parked-domains</member> - <member>peer-to-peer</member> - <member>phishing-and-other-frauds</member> - <member>proxy-avoidance-and-anonymizers</member> - <member>spam-urls</member> - <member>spyware-and-adware</member> - <member>unconfirmed-spam-sources</member> - </block> - <continue> - <member>business-and-economy</member> - </continue> - <block-list> - <member>www.bad.com</member> - <member>worth.com</member> - </block-list> - <allow-list> - <member>www.good.com</member> - <member>great.com</member> - </allow-list> - <action>block</action> - </entry> -</url-filtering> - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/url-filtering - -
- //url-filtering/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - - //entry/dynamic-url - @<dynamic-url>(?<dynamic_url>[^<]+)</dynamic-url>@ - - - //entry/enable-container-page - @<enable-container-page>(?<enable_container_page>[^<]+)</enable-container-page>@ - - - - //entry/license-expired - @<license-expired>(?<license_expired>[^<]+)</license-expired>@ - - - //entry/log-container-page-only - @<log-container-page-only>(?<log_container_page_only>[^<]+)</log-container-page-only>@ - - - //entry/description - @<description>(?<description>[^<]+)</description>@ - - - //entry/action - @<action>(?<action>[^<]+)</action>@ - - - - //entry/allow/member - - - //member - @<member>(?<member>[^<]+)</member>@ - - - - - - - //entry/override/member - - - //member - @<member>(?<member>[^<]+)</member>@ - - - - - - - //entry/allow-list/member - - - //member - @<member>(?<url>[^<]+)</member>@ - - - - - - - //entry/block-list/member - - - //member - @<member>(?<url>[^<]+)</member>@ - - - - - - - - - //entry/continue/member - - - //member - @<member>(?<member>[^<]+)</member>@ - - - - - - - //entry/block/member - - - //member - @<member>(?<member>[^<]+)</member>@ - - - - - - - //entry/alert/member - - - //member - @<member>(?<member>[^<]+)</member>@ - - - - - - - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/url-filtering - - <entry name='{$params.object_id}'> -{if !empty($params.description) } -<description>{$params.description}</description> -{/if} -{if !empty($params.alert) } -<alert> -{foreach $params.alert as $alert} -<member>{$alert.member}</member> -{/foreach} -</alert> -{/if} -{if !empty($params.block) } -<block> -{foreach $params.block as $block} -<member>{$block.member}</member> -{/foreach} -</block> -{/if} -{if !empty($params.continue) } -<continue> -{foreach $params.continue as $continue} -<member>{$continue.member}</member> -{/foreach} -</continue> -{/if} -{if !empty($params.block_list) } -<block-list> -{foreach $params.block_list as $block_list} -<member>{$block_list.url}</member> -{/foreach} -</block-list> -{/if} -{if !empty($params.allow_list) } -<allow-list> -{foreach $params.allow_list as $allow_list} -<member>{$allow_list.url}</member> -{/foreach} -</allow-list> -{/if} -<action>{$params.action}</action> -</entry> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/url-filtering/entry[@name='{$params.object_id}'] - - <entry name='{$params.object_id}'> -{if !empty($params.description) } -<description>{$params.description}</description> -{/if} -{if !empty($params.alert) } -<alert> -{foreach $params.alert as $alert} -<member>{$alert.member}</member> -{/foreach} -</alert> -{/if} -{if !empty($params.block) } -<block> -{foreach $params.block as $block} -<member>{$block.member}</member> -{/foreach} -</block> -{/if} -{if !empty($params.continue) } -<continue> -{foreach $params.continue as $continue} -<member>{$continue.member}</member> -{/foreach} -</continue> -{/if} -{if !empty($params.block_list) } -<block-list> -{foreach $params.block_list as $block_list} -<member>{$block_list.url}</member> -{/foreach} -</block-list> -{/if} -{if !empty($params.allow_list) } -<allow-list> -{foreach $params.allow_list as $allow_list} -<member>{$allow_list.url}</member> -{/foreach} -</allow-list> -{/if} -<action>{$params.action}</action> -</entry> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/url-filtering/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/V9.1/.meta_address_group.xml b/PALOALTO/VA/V9.1/.meta_address_group.xml deleted file mode 100755 index 97601925..00000000 --- a/PALOALTO/VA/V9.1/.meta_address_group.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1580401342022 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MODEL - VA - - - FILE_TYPE - text - - - TAG - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/V9.1/.meta_address_ip_netmask.xml b/PALOALTO/VA/V9.1/.meta_address_ip_netmask.xml deleted file mode 100755 index 97601925..00000000 --- a/PALOALTO/VA/V9.1/.meta_address_ip_netmask.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1580401342022 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MODEL - VA - - - FILE_TYPE - text - - - TAG - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/V9.1/.meta_address_ip_range.xml b/PALOALTO/VA/V9.1/.meta_address_ip_range.xml deleted file mode 100755 index 97601925..00000000 --- a/PALOALTO/VA/V9.1/.meta_address_ip_range.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1580401342022 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MODEL - VA - - - FILE_TYPE - text - - - TAG - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/V9.1/.meta_antivirus_shared_profile.xml b/PALOALTO/VA/V9.1/.meta_antivirus_shared_profile.xml deleted file mode 100755 index 97601925..00000000 --- a/PALOALTO/VA/V9.1/.meta_antivirus_shared_profile.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1580401342022 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MODEL - VA - - - FILE_TYPE - text - - - TAG - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/V9.1/.meta_antivirus_user_profile.xml b/PALOALTO/VA/V9.1/.meta_antivirus_user_profile.xml deleted file mode 100755 index 97601925..00000000 --- a/PALOALTO/VA/V9.1/.meta_antivirus_user_profile.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1580401342022 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MODEL - VA - - - FILE_TYPE - text - - - TAG - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/V9.1/.meta_ethernet.xml b/PALOALTO/VA/V9.1/.meta_ethernet.xml deleted file mode 100755 index 4d3a5a77..00000000 --- a/PALOALTO/VA/V9.1/.meta_ethernet.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1580461483730 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MODEL - VA - - - FILE_TYPE - text - - - TAG - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/V9.1/.meta_policy.xml b/PALOALTO/VA/V9.1/.meta_policy.xml deleted file mode 100755 index 97601925..00000000 --- a/PALOALTO/VA/V9.1/.meta_policy.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1580401342022 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MODEL - VA - - - FILE_TYPE - text - - - TAG - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/V9.1/.meta_service.xml b/PALOALTO/VA/V9.1/.meta_service.xml deleted file mode 100755 index 4ce7468f..00000000 --- a/PALOALTO/VA/V9.1/.meta_service.xml +++ /dev/null @@ -1,39 +0,0 @@ - - - - - DATE_MODIFICATION - 1588580646244 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1588580646238 - - - MODEL - 134 - - - TAG - - - FILE_TYPE - unknown - - - MANUFACTURER - 28 - - - TYPE - FILE - - - COMMENT - - - diff --git a/PALOALTO/VA/V9.1/.meta_spyware_shared_profile.xml b/PALOALTO/VA/V9.1/.meta_spyware_shared_profile.xml deleted file mode 100755 index 97601925..00000000 --- a/PALOALTO/VA/V9.1/.meta_spyware_shared_profile.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1580401342022 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MODEL - VA - - - FILE_TYPE - text - - - TAG - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/V9.1/.meta_urlf_shared_profile.xml b/PALOALTO/VA/V9.1/.meta_urlf_shared_profile.xml deleted file mode 100755 index 97601925..00000000 --- a/PALOALTO/VA/V9.1/.meta_urlf_shared_profile.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1580401342022 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MODEL - VA - - - FILE_TYPE - text - - - TAG - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/V9.1/.meta_urlf_user_profile.xml b/PALOALTO/VA/V9.1/.meta_urlf_user_profile.xml deleted file mode 100755 index 97601925..00000000 --- a/PALOALTO/VA/V9.1/.meta_urlf_user_profile.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1580401342022 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MODEL - VA - - - FILE_TYPE - text - - - TAG - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/V9.1/.meta_urlf_vulnerability_shared_profile.xml b/PALOALTO/VA/V9.1/.meta_urlf_vulnerability_shared_profile.xml deleted file mode 100755 index 97601925..00000000 --- a/PALOALTO/VA/V9.1/.meta_urlf_vulnerability_shared_profile.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1580401342022 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MODEL - VA - - - FILE_TYPE - text - - - TAG - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/V9.1/.meta_vulnerability_shared_profile.xml b/PALOALTO/VA/V9.1/.meta_vulnerability_shared_profile.xml deleted file mode 100755 index f080b5d0..00000000 --- a/PALOALTO/VA/V9.1/.meta_vulnerability_shared_profile.xml +++ /dev/null @@ -1,39 +0,0 @@ - - - - - DATE_MODIFICATION - 1588580633695 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1588580633690 - - - MODEL - 134 - - - TAG - - - FILE_TYPE - unknown - - - MANUFACTURER - 28 - - - TYPE - FILE - - - COMMENT - - - diff --git a/PALOALTO/VA/V9.1/.meta_zone.xml b/PALOALTO/VA/V9.1/.meta_zone.xml deleted file mode 100755 index 97601925..00000000 --- a/PALOALTO/VA/V9.1/.meta_zone.xml +++ /dev/null @@ -1,42 +0,0 @@ - - - - - CONFIGURATION_FILTER - - - - DATE_MODIFICATION - 1580401342022 - - - REPOSITORY - CommandDefinition - - - DATE_CREATION - 1438696836716 - - - MODEL - VA - - - FILE_TYPE - text - - - TAG - - - MANUFACTURER - - - TYPE - UPLOAD - - - COMMENT - - - diff --git a/PALOALTO/VA/V9.1/address_group.xml b/PALOALTO/VA/V9.1/address_group.xml deleted file mode 100755 index 018457f1..00000000 --- a/PALOALTO/VA/V9.1/address_group.xml +++ /dev/null @@ -1,65 +0,0 @@ - - - xml - - - false - - object_id - false - Objects - /images/eclipseIcons/page_obj.gif - false - false - 1 - 0 - Address Groups - 100 - - false - true - true - true - params._order - 5 - true - - - - - address_ip_netmask - address_ip_range - - - - - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address-group - -
- //address-group/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - - //entry/static/member - - - //member - @<member>(?<address>.*)</member>@ - - - - - - - - - diff --git a/PALOALTO/VA/V9.1/address_ip_netmask.xml b/PALOALTO/VA/V9.1/address_ip_netmask.xml deleted file mode 100755 index 1cea9425..00000000 --- a/PALOALTO/VA/V9.1/address_ip_netmask.xml +++ /dev/null @@ -1,89 +0,0 @@ - - - xml - - - false - IP Netmask object - object_id - false - Objects - /images/eclipseIcons/page_obj.gif - false - false - 1 - 0 - Address IP Netmask - 104 - - false - true - true - true - params._order - 5 - true - - - - - - <result> - <address> - <entry name="Address_VLAN-20-IP"> - <ip-netmask>10.101.101.254/24</ip-netmask> - </entry> - <entry name="EES7"> - <ip-netmask>7.7.70.7/16</ip-netmask> - </entry> - </address> -</result> - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - - <ip-netmask>{$params.address}/{$params.masklen}</ip-netmask> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}']/ip-netmask - - <ip-netmask>{$params.address}/{$params.masklen}</ip-netmask> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - - - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address - -
- //address/entry -
- - - @name="(?<object_id>.*)"@ - //entry/@name - - - @<ip-netmask>(?<address>[^/]+)/(?<masklen>[^<]+)</ip-netmask>@ - //entry/ip-netmask - - - - - - - - diff --git a/PALOALTO/VA/V9.1/address_ip_range.xml b/PALOALTO/VA/V9.1/address_ip_range.xml deleted file mode 100755 index ccd9d851..00000000 --- a/PALOALTO/VA/V9.1/address_ip_range.xml +++ /dev/null @@ -1,89 +0,0 @@ - - - xml - - - false - IP Range object - object_id - false - Objects - /images/eclipseIcons/page_obj.gif - false - false - 1 - 0 - Address IP Range - 102 - - false - true - true - true - params._order - 5 - true - - - - - - <result> - <address> - <entry name="Address_VLAN-20-IP"> - <ip-netmask>10.101.101.254/24</ip-netmask> - </entry> - <entry name="EES7"> - <ip-netmask>7.7.70.7/16</ip-netmask> - </entry> - </address> -</result> - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - - <ip-range>{$params.startaddress}-{$params.endaddress}</ip-range> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}']/ip-range - - <ip-range>{$params.startaddress}-{$params.endaddress}</ip-range> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address/entry[@name='{$params.object_id}'] - - - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/address - -
- //address/entry -
- - - @name="(?<object_id>.*)"@ - //entry/@name - - - - - //entry/ip-range - @<ip-range>(?<startaddress>[^-]+)-(?<endaddress>[^<]+)</ip-range>@ - - - - - - diff --git a/PALOALTO/VA/V9.1/antivirus_shared_profile.xml b/PALOALTO/VA/V9.1/antivirus_shared_profile.xml deleted file mode 100755 index 68ba7a7a..00000000 --- a/PALOALTO/VA/V9.1/antivirus_shared_profile.xml +++ /dev/null @@ -1,48 +0,0 @@ - - - xml - - - false - - object_id - false - Objects|Security Profiles - /images/eclipseIcons/page_obj.gif - false - false - 1 - 0 - Default Antivirus Profiles - 200 - - false - true - true - true - params._order - 5 - false - - - - - - - - type=config&action=show - /config/shared/profiles/virus - -
- //virus/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - - - - diff --git a/PALOALTO/VA/V9.1/antivirus_user_profile.xml b/PALOALTO/VA/V9.1/antivirus_user_profile.xml deleted file mode 100755 index 69b75aa8..00000000 --- a/PALOALTO/VA/V9.1/antivirus_user_profile.xml +++ /dev/null @@ -1,197 +0,0 @@ - - - xml - - - false - - object_id - false - Objects|Security Profiles - /images/eclipseIcons/page_obj.gif - false - false - 1 - 0 - Antivirus Profile - 200 - - false - true - true - true - params._order - 5 - true - - - - - ftp - http - imap - pop3 - smb - smtp - - -
decoder
- - - - - alert - allow - block - default - - -
decoder
- - - - - alert - allow - block - default - - -
decoder
- - - - - yes - no - - - - - <virus> - <entry name="USER_AV_Config"> - <decoder> - <entry name="ftp"> - <action>block</action> - <wildfire-action>default</wildfire-action> - </entry> - <entry name="http"> - <action>alert</action> - <wildfire-action>default</wildfire-action> - </entry> - <entry name="imap"> - <action>allow</action> - <wildfire-action>default</wildfire-action> - </entry> - <entry name="pop3"> - <action>allow</action> - <wildfire-action>default</wildfire-action> - </entry> - <entry name="smb"> - <action>allow</action> - <wildfire-action>default</wildfire-action> - </entry> - <entry name="smtp"> - <action>alert</action> - <wildfire-action>default</wildfire-action> - </entry> - </decoder> - <packet-capture>yes</packet-capture> - </entry> -</virus> - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/virus - -
- //virus/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - - //entry/decoder/entry - - - //entry/@name - @name="(?<decoder_id>.*)"@ - - - //entry/action - @<action>(?<decoder_action>[^<]+)</action>@ - - - //entry/wildfire-action - @<wildfire-action>(?<decoder_wildfire_action>[^<]+)</wildfire-action>@ - - - - - - //entry/packet-capture - @<packet-capture>(?<packet_capture>[^<]+)</packet-capture>@ - - - //entry/description - @<description>(?<description>[^<]+)</description>@ - - - - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/virus - - <entry name='{$params.object_id}'> -<decoder> -{foreach $params.decoder as $decoder} -<entry name="{$decoder.decoder_id}"> -<action>{$decoder.decoder_action}</action> -<wildfire-action>{$decoder.decoder_wildfire_action}</wildfire-action> -</entry> -{/foreach} -</decoder> -<packet-capture>{$params.packet_capture}</packet-capture> -{if !empty($params.description) } -<description>{$params.description}</description> -{/if} -</entry> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/virus/entry[@name='{$params.object_id}'] - - <entry name='{$params.object_id}'> -<decoder> -{foreach $params.decoder as $decoder} -<entry name="{$decoder.decoder_id}"> -<action>{$decoder.decoder_action}</action> -<wildfire-action>{$decoder.decoder_wildfire_action}</wildfire-action> -</entry> -{/foreach} -</decoder> -<packet-capture>{$params.packet_capture}</packet-capture> -{if !empty($params.description) } -<description>{$params.description}</description> -{/if} -</entry> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/virus/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/V9.1/ethernet.xml b/PALOALTO/VA/V9.1/ethernet.xml deleted file mode 100755 index d651c028..00000000 --- a/PALOALTO/VA/V9.1/ethernet.xml +++ /dev/null @@ -1,212 +0,0 @@ - - - xml - - - false - - object_id - false - Network - /images/repository/CommandDefinition/icons/web cluster.jpg - false - false - 1 - 0 - Interfaces - 700 - - false - true - true - true - params._order - 5 - - - - ethernet1/20 - ethernet1/17 - ethernet1/6 - ethernet1/7 - ethernet1/1 - ethernet1/21 - ethernet1/23 - ethernet1/14 - ethernet1/4 - ethernet1/24 - ethernet1/9 - ethernet1/16 - ethernet1/10 - ethernet1/22 - ethernet1/18 - ethernet1/12 - ethernet1/3 - ethernet1/5 - ethernet1/19 - ethernet1/11 - ethernet1/2 - ethernet1/13 - ethernet1/15 - ethernet1/8 - - - - - ha - layer2 - tap - virtual-wire - layer3 - - - - - - down - auto - up - - - - -
LLDP
- - - - - yes - no - - -
LLDP
- - - - - yes - no - - -
LLDP
- - - - - yes - no - - -
LLDP
- - - - - - -
LLDP
- - - - -
LLDP
- - - - - - - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/network/interface/ethernet - -
- //ethernet/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - //entry/* - @<(?<interface_type>[^\s\>\/]+).*>@ - - - //entry/*/lldp/enable - @<enable>(?<lldp_enable>.*)</enable>@ - - - //entry/*/lldp/profile - @<profile>(?<lldp_profile>.*)</profile>@ - - - //entry/comment - @<comment>(?<comment>.*)</comment>@ - - - //entry/link-state - @<link-state>(?<link_state>.*)</link-state>@ - - - - - - - - - - - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/network/interface/ethernet/entry[@name='{$params.object_id}'] - - <{$params.interface_type}> -{if $params.interface_type === "virtual-wire" || $params.interface_type === "layer2" || $params.interface_type === "layer3"} -<lldp> -<enable>{$params.lldp_enable}</enable> -{if !empty($params.lldp_profile)} -<profile>{$params.lldp_profile}</profile> -{/if} -</lldp> -{/if} -</{$params.interface_type}> -<comment>{$params.comment}</comment> -<link-state>{$params.link_state}</link-state> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/network/interface/ethernet/entry[@name='{$params.object_id}'] - - <entry name='{$params.object_id}'> -<{$params.interface_type}> -{if $params.interface_type === "virtual-wire" || $params.interface_type === "layer2" || $params.interface_type === "layer3"} -<lldp> -<enable>{$params.lldp_enable}</enable> -{if !empty($params.lldp_profile)} -<profile>{$params.lldp_profile}</profile> -{/if} -</lldp> -{/if} -</{$params.interface_type}> -<comment>{$params.comment}</comment> -<link-state>{$params.link_state}</link-state> -</entry> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/network/interface/ethernet/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/V9.1/policy.xml b/PALOALTO/VA/V9.1/policy.xml deleted file mode 100755 index 5bd5fe45..00000000 --- a/PALOALTO/VA/V9.1/policy.xml +++ /dev/null @@ -1,255 +0,0 @@ - - - xml - - - true - - object_id - false - Policies - /images/eclipseIcons/page_obj.gif - false - false - 1 - 0 - Security Policies - 1 - - false - true - true - true - params._order - 5 - true - - - - -
Source
- - - zone - - - - -
Source
- - - address_ip_netmask - address_ip_range - - - - -
Destination
- - - zone - - - - -
Destination
- - - address_ip_netmask - address_ip_range - - - - - service-http - service-https - any - - - - - allow - deny - - - - <rulebase> - <security> - <rules> - <entry name="Fw-Pascal"> - <from> - <member>Trust</member> - </from> - <to> - <member>untrust</member> - </to> - <source> - <member>Ip_Lan_192.168.45.0</member> - </source> - <destination> - <member>any</member> - </destination> - <source-user> - <member>any</member> - </source-user> - <category> - <member>any</member> - </category> - <application> - <member>any</member> - </application> - <service> - <member>service-http</member> - <member>service-https</member> - </service> - <hip-profiles> - <member>any</member> - </hip-profiles> - <action>allow</action> - <tag> - <member>Trust</member> - </tag> - </entry> - </rules> - </security> -</rulebase> - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules - -
- //rules/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - //entry/from/member - @<member>(?<zone_from>.*)</member>@ - - - //entry/to/member - @<member>(?<zone_to>.*)</member>@ - - - //entry/source/member - @<member>(?<src_address>.*)</member>@ - - - //entry/destination/member - @<member>(?<dst_address>.*)</member>@ - - - //entry/action - @<action>(?<action>.*)</action>@ - - - - //entry/service/member - - - //member - @<member>(?<service>.*)</member>@ - - - - - - - - - - - - - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - - <entry name="{$params.object_id}"> -<from> -<member>{$params.zone_from}</member> -</from> -<to> -<member>{$params.zone_to}</member> -</to> -<source> -<member>{$params.src_address}</member> -</source> -<destination> -<member>{$params.dst_address}</member> -</destination> -<source-user> -<member>any</member> -</source-user> -<category> -<member>any</member> -</category> -<application> -<member>any</member> -</application> -<service> -{foreach $params.services as $srv} -<member>{$srv.service}</member> -{/foreach} -</service> -<hip-profiles> -<member>any</member> -</hip-profiles> -<action>{$params.action}</action> -</entry> - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - - <from> -<member>{$params.zone_from}</member> -</from> -<to> -<member>{$params.zone_to}</member> -</to> -<source> -<member>{$params.src_address}</member> -</source> -<destination> -<member>{$params.dst_address}</member> -</destination> -<source-user> -<member>any</member> -</source-user> -<category> -<member>any</member> -</category> -<application> -<member>any</member> -</application> -<service> -{foreach $params.services as $srv} -<member>{$srv.service}</member> -{/foreach} -</service> -<hip-profiles> -<member>any</member> -</hip-profiles> -<action>{$params.action}</action> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/V9.1/service.xml b/PALOALTO/VA/V9.1/service.xml deleted file mode 100755 index b3fff7f4..00000000 --- a/PALOALTO/VA/V9.1/service.xml +++ /dev/null @@ -1,122 +0,0 @@ - - - /images/eclipseIcons/page_obj.gif - Security Services - object_id - - 1 - 0 - xml - - - false - false - false - 0 - - Security Services - Policies - false - 1 - false - true - true - true - params._order - - - - - - urlf_shared_profile - urlf_user_profile - - - - - antivirus_shared_profile - antivirus_user_profile - - - - - vulnerability_shared_profile - - - - - zone - - - - - zone - - - - - <rulebase><security><rules><entry name="FW_20140728_1"><profile-setting><profiles><url-filtering><member>MSS_URL_Template_VM-vFW</member></url-filtering><virus><member>MSS_Web_Mail_AntiVirus</member></virus><spyware><member>MSS_SPY_Block</member></spyware><vulnerability><member>MSS_IPS_Block</member></vulnerability></profiles></profile-setting><option><disable-server-response-inspection>no</disable-server-response-inspection></option><from><member>TEST2_R1_VM</member></from><to><member>TEST2_R1_vFW</member></to><source><member>any</member></source><destination><member>any</member></destination><source-user><member>any</member></source-user><category><member>any</member></category><application><member>any</member></application><service><member>any</member></service><hip-profiles><member>any</member></hip-profiles><log-start>no</log-start><log-end>yes</log-end><log-setting>SOC_Default_Logging</log-setting><negate-source>no</negate-source><negate-destination>no</negate-destination><action>allow</action></entry> - - - - type=config&action=show - -
- @^\s \s*$@ -
- - - - @name="(?<object_id>.*)"@ - - - - @<member>(?<url_filtering_profile>.*)</member>@ - - - - @<member>(?<virus_profile>.*)</member>@ - - - - @<member>(?<ips_profile>.*)</member>@ - - - - @<member>(?<zone_from>.*)</member>@ - - - - @<member>(?<zone_to>.*)</member>@ - - - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules - - - <profiles> -{if !empty($params.url_filtering_profile)} -<url-filtering><member>{$params.url_filtering_profile}</member> -</url-filtering> -{/if} -{if !empty($params.virus_profile)} -<virus><member>{$params.virus_profile}</member> -</virus> -{/if} -{if !empty($params.ips_profile)} -<vulnerability><member>{$params.ips_profile}</member> -</vulnerability> -{/if} -</profiles> - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/rulebase/security/rules/entry[@name='{$params.object_id}']/profile-setting/profiles - - - - - - - - diff --git a/PALOALTO/VA/V9.1/spyware_shared_profile.xml b/PALOALTO/VA/V9.1/spyware_shared_profile.xml deleted file mode 100755 index f31690ab..00000000 --- a/PALOALTO/VA/V9.1/spyware_shared_profile.xml +++ /dev/null @@ -1,48 +0,0 @@ - - - xml - - - false - - object_id - false - Objects|Security Profiles - /images/eclipseIcons/page_obj.gif - false - false - 1 - 0 - Anti-Spyware Profiles - 200 - - false - true - true - true - params._order - 5 - false - - - - - - - - type=config&action=show - /config/shared/profiles/spyware - -
- //virus/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - - - - diff --git a/PALOALTO/VA/V9.1/urlf_shared_profile.xml b/PALOALTO/VA/V9.1/urlf_shared_profile.xml deleted file mode 100755 index bf897ffd..00000000 --- a/PALOALTO/VA/V9.1/urlf_shared_profile.xml +++ /dev/null @@ -1,48 +0,0 @@ - - - xml - - - false - - object_id - false - Objects|Security Profiles - /images/eclipseIcons/page_obj.gif - false - false - 1 - 0 - Default URL Filtering Profiles - 200 - - false - true - true - true - params._order - 5 - false - - - - - - - - type=config&action=show - /config/shared/profiles/url-filtering - -
- //url-filtering/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - - - - diff --git a/PALOALTO/VA/V9.1/urlf_user_profile.xml b/PALOALTO/VA/V9.1/urlf_user_profile.xml deleted file mode 100755 index 98fde1ad..00000000 --- a/PALOALTO/VA/V9.1/urlf_user_profile.xml +++ /dev/null @@ -1,600 +0,0 @@ - - - xml - - - false - - object_id - false - Objects|Security Profiles - /images/repository/CommandDefinition/icons/lan to lan.jpg - false - false - 1 - 0 - URL Filtering Profile - 20 - - false - true - true - true - params._order - 5 - true - - - - - allow - block - - - - - no - yes - - - - - no - yes - - - - - no - yes - - - - - - abortion - abused-drugs - adult - alcohol-and-tobacco - auctions - business-and-economy - computer-and-internet-info - content-delivery-networks - dating - educational-institutions - entertainment-and-arts - financial-services - gambling - games - government - hacking - health-and-medicine - home-and-garden - hunting-and-fishing - internet-communications-and-telephony - internet-portals - job-search - legal - malware - military - motor-vehicles - music - news - not-resolved - nudity - online-storage-and-backup - parked - peer-to-peer - personal-sites-and-blogs - philosophy-and-political-advocacy - phishing - private-ip-addresses - proxy-avoidance-and-anonymizers - questionable - real-estate - recreation-and-hobbies - reference-and-research - religion - search-engines - sex-education - shareware-and-freeware - shopping - social-networking - society - sports - stock-advice-and-tools - streaming-media - swimsuits-and-intimate-apparel - training-and-tools - translation - travel - unknown - weapons - web-advertisements - web-based-email - web-hosting - - -
alert
- - - params.block.0.member - params.continue.0.member - - - - - abortion - abused-drugs - adult - alcohol-and-tobacco - auctions - business-and-economy - computer-and-internet-info - content-delivery-networks - dating - educational-institutions - entertainment-and-arts - financial-services - gambling - games - government - hacking - health-and-medicine - home-and-garden - hunting-and-fishing - internet-communications-and-telephony - internet-portals - job-search - legal - malware - military - motor-vehicles - music - news - not-resolved - nudity - online-storage-and-backup - parked - peer-to-peer - personal-sites-and-blogs - philosophy-and-political-advocacy - phishing - private-ip-addresses - proxy-avoidance-and-anonymizers - questionable - real-estate - recreation-and-hobbies - reference-and-research - religion - search-engines - sex-education - shareware-and-freeware - shopping - social-networking - society - sports - stock-advice-and-tools - streaming-media - swimsuits-and-intimate-apparel - training-and-tools - translation - travel - unknown - weapons - web-advertisements - web-based-email - web-hosting - - -
block
- - - params.alert.0.member - params.continue.0.member - - - - - abortion - abused-drugs - adult - alcohol-and-tobacco - auctions - business-and-economy - computer-and-internet-info - content-delivery-networks - dating - educational-institutions - entertainment-and-arts - financial-services - gambling - games - government - hacking - health-and-medicine - home-and-garden - hunting-and-fishing - internet-communications-and-telephony - internet-portals - job-search - legal - malware - military - motor-vehicles - music - news - not-resolved - nudity - online-storage-and-backup - parked - peer-to-peer - personal-sites-and-blogs - philosophy-and-political-advocacy - phishing - private-ip-addresses - proxy-avoidance-and-anonymizers - questionable - real-estate - recreation-and-hobbies - reference-and-research - religion - search-engines - sex-education - shareware-and-freeware - shopping - social-networking - society - sports - stock-advice-and-tools - streaming-media - swimsuits-and-intimate-apparel - training-and-tools - translation - travel - unknown - weapons - web-advertisements - web-based-email - web-hosting - - -
continue
- - - params.block.0.member - params.alert.0.member - - - - -
allow_list
- - - - -
block_list
- - - - - alert - block - continue - override - - - - <url-filtering> - <entry name="USER_URL_Config_VM-vFW"> - <license-expired>allow</license-expired> - <enable-container-page>yes</enable-container-page> - <dynamic-url>yes</dynamic-url> - <log-container-page-only>yes</log-container-page-only> - <description>VM &gt; vFW</description> - <alert> - <member>abortion</member> - <member>adult-and-pornography</member> - <member>alcohol-and-tobacco</member> - <member>auctions</member> - <member>cheating</member> - <member>computer-and-internet-security</member> - <member>content-delivery-networks</member> - <member>cult-and-occult</member> - <member>dating</member> - <member>dead-sites</member> - <member>dynamically-generated-content</member> - <member>educational-institutions</member> - <member>entertainment-and-arts</member> - <member>fashion-and-beauty</member> - <member>financial-services</member> - <member>games</member> - <member>government</member> - <member>gross</member> - <member>hacking</member> - <member>hate-and-racism</member> - <member>health-and-medicine</member> - <member>home-and-garden</member> - <member>hunting-and-fishing</member> - <member>illegal</member> - <member>image-and-video-search</member> - <member>individual-stock-advice-and-tools</member> - <member>internet-communications</member> - <member>internet-portals</member> - <member>job-search</member> - <member>kids</member> - <member>legal</member> - <member>local-information</member> - <member>marijuana</member> - <member>military</member> - <member>motor-vehicles</member> - <member>news-and-media</member> - <member>not-resolved</member> - <member>nudity</member> - <member>online-gambling</member> - <member>online-greeting-cards</member> - <member>online-music</member> - <member>online-personal-storage</member> - <member>pay-to-surf</member> - <member>personal-sites-and-blogs</member> - <member>philosophy-and-political-advocacy</member> - <member>private-ip-addresses</member> - <member>questionable</member> - <member>real-estate</member> - <member>recreation-and-hobbies</member> - <member>reference-and-research</member> - <member>religion</member> - <member>search-engines</member> - <member>sex-education</member> - <member>shareware-and-freeware</member> - <member>shopping</member> - <member>social-networking</member> - <member>society</member> - <member>sports</member> - <member>streaming-media</member> - <member>swimsuits-and-intimate-apparel</member> - <member>training-and-tools</member> - <member>translation</member> - <member>travel</member> - <member>unknown</member> - <member>violence</member> - <member>weapons</member> - <member>web-advertisements</member> - <member>web-based-email</member> - <member>web-hosting</member> - </alert> - <block> - <member>abused-drugs</member> - <member>bot-nets</member> - <member>confirmed-spam-sources</member> - <member>keyloggers-and-monitoring</member> - <member>malware-sites</member> - <member>open-http-proxies</member> - <member>parked-domains</member> - <member>peer-to-peer</member> - <member>phishing-and-other-frauds</member> - <member>proxy-avoidance-and-anonymizers</member> - <member>spam-urls</member> - <member>spyware-and-adware</member> - <member>unconfirmed-spam-sources</member> - </block> - <continue> - <member>business-and-economy</member> - </continue> - <block-list> - <member>www.bad.com</member> - <member>worth.com</member> - </block-list> - <allow-list> - <member>www.good.com</member> - <member>great.com</member> - </allow-list> - <action>block</action> - </entry> -</url-filtering> - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/url-filtering - -
- //url-filtering/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - - //entry/dynamic-url - @<dynamic-url>(?<dynamic_url>[^<]+)</dynamic-url>@ - - - //entry/enable-container-page - @<enable-container-page>(?<enable_container_page>[^<]+)</enable-container-page>@ - - - - //entry/license-expired - @<license-expired>(?<license_expired>[^<]+)</license-expired>@ - - - //entry/log-container-page-only - @<log-container-page-only>(?<log_container_page_only>[^<]+)</log-container-page-only>@ - - - //entry/description - @<description>(?<description>[^<]+)</description>@ - - - //entry/action - @<action>(?<action>[^<]+)</action>@ - - - - //entry/allow-list/member - - - //member - @<member>(?<url>[^<]+)</member>@ - - - - - - - //entry/block-list/member - - - //member - @<member>(?<url>[^<]+)</member>@ - - - - - - - - - //entry/continue/member - - - //member - @<member>(?<member>[^<]+)</member>@ - - - - - - - //entry/block/member - - - //member - @<member>(?<member>[^<]+)</member>@ - - - - - - - //entry/alert/member - - - //member - @<member>(?<member>[^<]+)</member>@ - - - - - - - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/url-filtering - - <entry name='{$params.object_id}'> -{if !empty($params.description) } -<description>{$params.description}</description> -{/if} -{if !empty($params.alert) } -<alert> -{foreach $params.alert as $alert} -<member>{$alert.member}</member> -{/foreach} -</alert> -{/if} -{if !empty($params.block) } -<block> -{foreach $params.block as $block} -<member>{$block.member}</member> -{/foreach} -</block> -{/if} -{if !empty($params.continue) } -<continue> -{foreach $params.continue as $continue} -<member>{$continue.member}</member> -{/foreach} -</continue> -{/if} -{if !empty($params.block_list) } -<block-list> -{foreach $params.block_list as $block_list} -<member>{$block_list.url}</member> -{/foreach} -</block-list> -{/if} -{if !empty($params.allow_list) } -<allow-list> -{foreach $params.allow_list as $allow_list} -<member>{$allow_list.url}</member> -{/foreach} -</allow-list> -{/if} -<action>{$params.action}</action> -</entry> - - - - type=config&action=edit - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/url-filtering/entry[@name='{$params.object_id}'] - - <entry name='{$params.object_id}'> -{if !empty($params.description) } -<description>{$params.description}</description> -{/if} -{if !empty($params.alert) } -<alert> -{foreach $params.alert as $alert} -<member>{$alert.member}</member> -{/foreach} -</alert> -{/if} -{if !empty($params.block) } -<block> -{foreach $params.block as $block} -<member>{$block.member}</member> -{/foreach} -</block> -{/if} -{if !empty($params.continue) } -<continue> -{foreach $params.continue as $continue} -<member>{$continue.member}</member> -{/foreach} -</continue> -{/if} -{if !empty($params.block_list) } -<block-list> -{foreach $params.block_list as $block_list} -<member>{$block_list.url}</member> -{/foreach} -</block-list> -{/if} -{if !empty($params.allow_list) } -<allow-list> -{foreach $params.allow_list as $allow_list} -<member>{$allow_list.url}</member> -{/foreach} -</allow-list> -{/if} -<action>{$params.action}</action> -</entry> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/profiles/url-filtering/entry[@name='{$params.object_id}'] - - - - - diff --git a/PALOALTO/VA/V9.1/vulnerability_shared_profile.xml b/PALOALTO/VA/V9.1/vulnerability_shared_profile.xml deleted file mode 100755 index 78607af7..00000000 --- a/PALOALTO/VA/V9.1/vulnerability_shared_profile.xml +++ /dev/null @@ -1,55 +0,0 @@ - - - /images/eclipseIcons/page_obj.gif - IPS/IDS profiles - object_id - - 200 - 0 - xml - - - false - false - false - 0 - - IPS/IDS profiles - Objects|Security Profiles - false - 1 - false - true - true - true - params._order - - - - - - <vulnerability><entry name="MSS_IPS_Block"><rules><entry name="Critical"><vendor-id><member>any</member></vendor-id><cve><member>any</member></cve><severity><member>critical</member></severity><threat-name>any</threat-name><host>any</host><category>any</category><packet-capture>yes</packet-capture><action><default/></action></entry> - - - - type=config&action=show - -
- @^\s \s*$@ -
- - - - @name="(?<object_id>.*)"@ - - - - /config/shared/profiles/vulnerability - - - - - - - - diff --git a/PALOALTO/VA/V9.1/zone.xml b/PALOALTO/VA/V9.1/zone.xml deleted file mode 100755 index ed990557..00000000 --- a/PALOALTO/VA/V9.1/zone.xml +++ /dev/null @@ -1,110 +0,0 @@ - - - xml - - - false - - object_id - false - Network - /images/eclipseIcons/page_obj.gif - false - false - 1 - 0 - Zone - 10000 - - false - true - true - true - params._order - 5 - - - - - layer3 - layer2 - tap - virtual-wire - - - - -
Members
- - - ethernet - - - - - - - - type=config&action=show - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/zone - -
- //zone/entry -
- - - //entry/@name - @name="(?<object_id>.*)"@ - - - //entry/network/* - @<(?<zone_type>[^\s\>]+).*>@ - - - - //entry/network/*/member - - - //member - @<member>(?<member>.*)</member>@ - - - - - - - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/zone/entry[@name='{$params.object_id}']/network - - <{$params.zone_type}> -{foreach $params.members as $membrs} -<member>{$membrs.member}</member> -{/foreach} -</{$params.zone_type}> - - - - type=config&action=delete - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/zone/entry[@name='{$params.object_id}'] - - - - - - type=config&action=set - - /config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/zone/entry[@name='{$params.object_id}']/network - - <{$params.zone_type}> -{foreach $params.members as $membrs} -<member>{$membrs.member}</member> -{/foreach} -</{$params.zone_type}> - - -