Palo Alto Networks Knowledgebase: What are the Threat Log Values for Threat ID and Direction?

What are the Threat Log Values for Threat ID and Direction?

(521 Views)
Created On 09/26/18 13:44 PM - Last Updated 09/26/18 14:00 PM
Categories:  Threat Intelligence,  Threat Prevention

Issue:


Solution:


Answer

 

ThreatID Field

 

ThreatIDSignification
8000 - 8099Scan detection
8500 - 8599Flood detection
9999URL Filtering log
10000 - 19999Spyware phone home detection
20000 - 29999Spyware download detection
30000 - 44999Vulnerability exploit detection
52000 - 52999File type detection
60000 - 69999Data filtering detection
100000 - 2999999Virus detection
3000000 - 3999999Wildfire signature feed
4000000 - 4999999DNS Botnet signatures

 

 

Direction Field 

 

ValueDirection
0Client to Server
1Server to Client

 

 

owner: panagent

Attachments:

Actions:
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClmHCAS&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Change Language: