topic Re: Wildfire detecting phishing (severity high) but action is allow in Next-Generation Firewall Discussions https://live.paloaltonetworks.com/t5/next-generation-firewall/wildfire-detecting-phishing-severity-high-but-action-is-allow/m-p/513433#M339 <P>Well just set it to block not alert. Palo Alto has great documentation so for such questions you will get the answer with google in matter of minutes:</P> <P>&nbsp;</P> <P><A href="https://docs.paloaltonetworks.com/wildfire/u-v/wildfire-whats-new/latest-wildfire-cloud-features/wildfire-phishing-verdict" target="_blank">https://docs.paloaltonetworks.com/wildfire/u-v/wildfire-whats-new/latest-wildfire-cloud-features/wildfire-phishing-verdict</A></P> Wed, 31 Aug 2022 09:47:11 GMT nikoolayy1 2022-08-31T09:47:11Z Wildfire detecting phishing (severity high) but action is allow https://live.paloaltonetworks.com/t5/next-generation-firewall/wildfire-detecting-phishing-severity-high-but-action-is-allow/m-p/512591#M293 <P>Hello all, I am seeing multiple Wildfire submissions that have the same source IP</P> <P>and are being detected as smtp-base with the verdict of phishing, high severity but the&nbsp;</P> <P>action is "Allow". I have noticed in the Antivirus profile that for SMTP the "Wildfire</P> <P>signature action" and the Wildfire Inline ML action" is set to "default (alert)". How do I block</P> <P>these Wildfire detections that are phishing and Malicious? Thank you.</P> Mon, 22 Aug 2022 18:29:51 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/wildfire-detecting-phishing-severity-high-but-action-is-allow/m-p/512591#M293 ccfritz 2022-08-22T18:29:51Z Re: Wildfire detecting phishing (severity high) but action is allow https://live.paloaltonetworks.com/t5/next-generation-firewall/wildfire-detecting-phishing-severity-high-but-action-is-allow/m-p/513433#M339 <P>Well just set it to block not alert. Palo Alto has great documentation so for such questions you will get the answer with google in matter of minutes:</P> <P>&nbsp;</P> <P><A href="https://docs.paloaltonetworks.com/wildfire/u-v/wildfire-whats-new/latest-wildfire-cloud-features/wildfire-phishing-verdict" target="_blank">https://docs.paloaltonetworks.com/wildfire/u-v/wildfire-whats-new/latest-wildfire-cloud-features/wildfire-phishing-verdict</A></P> Wed, 31 Aug 2022 09:47:11 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/wildfire-detecting-phishing-severity-high-but-action-is-allow/m-p/513433#M339 nikoolayy1 2022-08-31T09:47:11Z