goog palo ids

[Jymit]

//ephemeral ips fysa :)
GSP748 - Palo Alto Networks: Advanced Threat Detection

Compute Engine > Juice-shop > ext IP
//Juice-shop

// PAN VM-Series
addr.src in {*your IP address*}
82.23.254.71
addr.src in {82.23.254.71}
34.72.30.36/#/score-board

//JENKINS
ip:8080
//KALI
msfconsole -r jenkins.rc
python -c 'import pty; pty.spawn("/bin/bash")'

addr.src in {82.23.254.71}
( severity neq informational )
( addr.dst in 192.168.11.3 ) or ( addr.dst in 192.168.11.4 )
(( addr.dst in 192.168.11.3 ) or ( addr.dst in 192.168.11.4 ) ) and ( severity neq informational )
( addr.src in 192.168.11.3 )

[Jymit]

//ephemeral ips fysa :)
GSP489 - Palo Alto Networks VM-Series Firewall: Automating Deployment with Terraform

gcloud auth list
gcloud config list project

//dependancies
gsutil cp -r gs://spls/gsp489 .
cd gsp489
unzip terraform-ansible-intro.zip
cd terraform-ansible-intro-master
./setup
terraform --version

//compute engine
gcloud projects list
gcloud config set project [project_id]
gcloud services enable compute.googleapis.com

//api creds
gcloud iam service-accounts list
gcloud iam service-accounts keys create gcp_compute_key.json --iam-account <Compute_Engine_default_service_account_email_address>
cat gcp_compute_key.json
//ssh creds
ssh-keygen -t rsa -b 1024 -N '' -f ~/.ssh/lab_ssh_key
//deploy
cd deployment