https://live.paloaltonetworks.com/t5/general-topics/dns-sinkholing-missing-related-traffic-logs-on-windows-machines/m-p/525314#M108641 <P>Hi&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/209466">@rufat87</a>&nbsp;,</P> <P>&nbsp;</P> <P>What version of PAN-OS are you running?&nbsp;</P> Wed, 28 Dec 2022 03:50:36 GMT JayGolf 2022-12-28T03:50:36Z https://live.paloaltonetworks.com/t5/general-topics/dns-sinkholing-missing-related-traffic-logs-on-windows-machines/m-p/525012#M108603 <P>Since we configured dns sinkholing for some stuff like parked, malware domains, we are seeing related threat logs but no associated traffic logs pointing us to the source behind the queries. Recently we tested it on Mac machines and we do see traffic logs to sinkhole IP, but it doesn't seem to be working on the windows hosts.&nbsp;</P> <P>&nbsp;</P> <P>Has anyone experienced such or similar behavior? Any help/suggestions are very appreciated.&nbsp;</P> Fri, 23 Dec 2022 22:11:58 GMT https://live.paloaltonetworks.com/t5/general-topics/dns-sinkholing-missing-related-traffic-logs-on-windows-machines/m-p/525012#M108603 rufat87 2022-12-23T22:11:58Z https://live.paloaltonetworks.com/t5/general-topics/dns-sinkholing-missing-related-traffic-logs-on-windows-machines/m-p/525314#M108641 <P>Hi&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/209466">@rufat87</a>&nbsp;,</P> <P>&nbsp;</P> <P>What version of PAN-OS are you running?&nbsp;</P> Wed, 28 Dec 2022 03:50:36 GMT https://live.paloaltonetworks.com/t5/general-topics/dns-sinkholing-missing-related-traffic-logs-on-windows-machines/m-p/525314#M108641 JayGolf 2022-12-28T03:50:36Z