Palo Alto Networks Knowledgebase: How to Enable Vulnerability and Anti-Virus Scanning for Custom Application

How to Enable Vulnerability and Anti-Virus Scanning for Custom Application

(501 Views)
Created On 09/25/18 17:58 PM - Last Updated 09/25/18 23:11 PM
Categories:  Threat Intelligence,  Threat Prevention

Issue:


Solution:


To enable Vulnerability Scanning

Vulnerability scanning is automatically enabled if the custom app is based off a "base app" like HTTP or SMB and also based on the settings of that policy's vulnerability/spyware profile.

Note: The spyware checkbox in the screenshot is a non-operational.

 

custom vuln sigs.png

 

To enable Anti-Virus Scanning

Anti-Virus Scanning for Custom-Application is done by setting the Virus-Identification flag to "yes" as follows:

 

Multi-Vsys Platforms :

# set vsys vsys1 application myapp virus-ident yes

 

Single Vsys Platforms :

# set application test virus-ident

 

owner: akawimandan

Attachments:

Actions:
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClLoCAK&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Change Language: