Palo Alto Networks Knowledgebase: How to find severity of a file type supported by the file blocking profile

How to find severity of a file type supported by the file blocking profile

1886
Created On 02/07/19 23:42 PM - Last Updated 02/07/19 23:42 PM
Resolution

To check the severity of a certain file type supported in file blocking profile on the Palo Alto Networks firewall, run the following command in CLI session:

 

show threat id <file type ID>

 

To get a severity of the “zip” file type run the following command:

 

admin@PA-VM-Dragoslav-1> show threat id 52004

 

ZIP file upload or download has been detected. A ZIP file is a compressed archive. It can contain only one file or many files in multiple directories. ZIP utilities allow you to extract single files or a complete directory structure. This file detection might also include a JAVA JAR archive file, since the JAR file is based on the ZIP format with an optional manifest file.

 

low

 

file-blocking

 

http://www.pkware.com/index.php?option=com_content&task=view&id=64&Itemid=107



Attachments
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm03CAC&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Attachments
Choose Language