topic Threat 109020001 detection, dropping LAN traffic after 10.0.0 upgrade in Advanced Threat Prevention Discussions https://live.paloaltonetworks.com/t5/advanced-threat-prevention/threat-109020001-detection-dropping-lan-traffic-after-10-0-0/m-p/340049#M908 <P>After upgrading from v9.1.3 to v10.0.0, I'm seeing detections for&nbsp;<SPAN>109020001 (newly registered domain) for traffic to/from addresses in a private class C subnet.&nbsp; It's also taking a drop action.</SPAN></P><P>&nbsp;</P><P><SPAN>I can't find the signature in vulnerability profiles to make an exception or change the action.&nbsp; Has anyone else seen this or know where to find it so I can exception or change action?</SPAN></P> Wed, 22 Jul 2020 14:00:01 GMT JonIsaacson 2020-07-22T14:00:01Z Threat 109020001 detection, dropping LAN traffic after 10.0.0 upgrade https://live.paloaltonetworks.com/t5/advanced-threat-prevention/threat-109020001-detection-dropping-lan-traffic-after-10-0-0/m-p/340049#M908 <P>After upgrading from v9.1.3 to v10.0.0, I'm seeing detections for&nbsp;<SPAN>109020001 (newly registered domain) for traffic to/from addresses in a private class C subnet.&nbsp; It's also taking a drop action.</SPAN></P><P>&nbsp;</P><P><SPAN>I can't find the signature in vulnerability profiles to make an exception or change the action.&nbsp; Has anyone else seen this or know where to find it so I can exception or change action?</SPAN></P> Wed, 22 Jul 2020 14:00:01 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/threat-109020001-detection-dropping-lan-traffic-after-10-0-0/m-p/340049#M908 JonIsaacson 2020-07-22T14:00:01Z Re: Threat 109020001 detection, dropping LAN traffic after 10.0.0 upgrade https://live.paloaltonetworks.com/t5/advanced-threat-prevention/threat-109020001-detection-dropping-lan-traffic-after-10-0-0/m-p/341074#M919 <P>Hello&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/125532">@JonIsaacson</a>&nbsp;</P> <P>&nbsp;</P> <P>This exception can be added under the spyware profile -&gt;DNS signature-&gt; exception.&nbsp; Please remember that after adding this exception the whole category of "newly register domains" will be whitelisted.</P> <P>&nbsp;</P> <P>Best</P> <P>Himani</P> Tue, 28 Jul 2020 16:02:44 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/threat-109020001-detection-dropping-lan-traffic-after-10-0-0/m-p/341074#M919 hisingh 2020-07-28T16:02:44Z