Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision |
| paloaltonetworks:logs:threat-logs [2020/08/10 16:09] – [Triggered by Zone Protection Profile] bstafford | paloaltonetworks:logs:threat-logs [2022/11/23 12:49] (current) – external edit 127.0.0.1 |
|---|
| ===== Threats ===== | ===== Threats ===== |
| <code>( subtype eq wildfire-virus ) and ( severity eq medium )</code> | <code>( subtype eq wildfire-virus ) and ( severity eq medium )</code> |
| | <code>( subtype eq ml-virus ) and ( severity eq medium )</code> |
| <code>( subtype eq virus ) and ( severity eq medium )</code> | <code>( subtype eq virus ) and ( severity eq medium )</code> |
| <code>( subtype eq spyware ) and ( action eq sinkhole )</code> | <code>( subtype eq spyware ) and ( action eq sinkhole )</code> |
| <code>( subtype eq flood ) and ( name-of-threatid eq 'TCP Flood' ) and ( action eq drop ) and ( severity eq critical )</code> | <code>( subtype eq flood ) and ( name-of-threatid eq 'TCP Flood' ) and ( action eq drop ) and ( severity eq critical )</code> |
| <code>( subtype eq flood ) and ( name-of-threatid eq 'ICMP Flood' ) and ( action eq drop ) and ( severity eq critical )</code> | <code>( subtype eq flood ) and ( name-of-threatid eq 'ICMP Flood' ) and ( action eq drop ) and ( severity eq critical )</code> |
| | ===== DoS Protection Profile/Policy ===== |
| | <code>( subtype eq flood ) and (name-of-threatid eq 'Session Limit Event') and ( action eq drop ) and ( severity eq critical )</code> |
| |
