How to build a threat log filter without having the entire threat-id name information?

How to build a threat log filter without having the entire threat-id name information?

8788
Created On 01/30/22 19:30 PM - Last Modified 03/09/22 04:06 AM


Objective


How to build a threat log filter without having the entire threat-name information?

Environment


  • Palo Alto Firewalls or Panorama
  • PANOS versions: 8.1.x, 9.0.x, 9.1.x, 10.0.x, 10.1.x
  • Threat Prevention license
  • Security Profile

Procedure


  1. Log in to  THREAT VAULT
  2. Search for the interested threat name.  If you do not have the entire threat name, enter the partial threat name or id in the search box
  3. Use the threat log filter to build the interested threat filter with the threat-id/name found in the above step.  See example below:
User-added image
 
 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000004N29CAE&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language