Meraki

Community

Meraki API call to Palo Alto Wildfire

choclateer
Comes here often
‎May 26 2020 4:25 PM
‎May 26 2020 4:25 PM

Meraki API call to Palo Alto Wildfire

A customer wants to integrate his Meraki APs to his Palo Alto Wildfire. Has anyone done this before?

0 Kudos
3 Replies 3
CptnCrnch
Kind of a big deal
Kind of a big deal
‎May 26 2020 11:20 PM
‎May 26 2020 11:20 PM

How should integration look like?

 

I've never done this and don't know how Wildfire handles things, but the only way for outgoing calls on Meraki side would be Webhooks.

 

The other option is having Wildfire pull stuff via Meraki API, but that'd be inbound.

0 Kudos
In response to CptnCrnch
choclateer
Comes here often
‎May 27 2020 8:14 AM
‎May 27 2020 8:14 AM

We only have an RFP to date, haven't actually called them, but they are asking for all files downloaded by their network clients be automatically sent to Wildfire. (They have a Meraki network, switches and wireless.) Wildfire is Palo Alto's version of a Malware detector in the cloud, kind of equivalent to Cisco's AMP PxGrid.

0 Kudos
In response to choclateer
Nash
Kind of a big deal
‎May 27 2020 11:20 AM
‎May 27 2020 11:20 AM

Oh, dang. That doesn't sound like something you can do with webhooks or the Meraki API. To the best of my knowledge, neither of those things have any access to files downloaded onto the network.

 

The integrated AMP in the MX would have access, and you could send files to ThreatGrid with a subscription. But I don't think you're going to integrate this with a PAN product like you want.

Windows 10 Client VPN scripts: Makes life better!
0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.