- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
Historically, some malformed or irregular packets that were discarded by a zone protection profile or built in protection (like LAND attacks) would only increment a global counter to indicate an action was taken. This made troubleshooting such occurrences, or logging for auditing and compliancy, a little more tedious.
Starting from PAN-OS 8.1.2 new threat logs were introduced that will appear each time such packets are discarded:
Threat logs will also be generated on the following events (which don’t require Packet-Based Attack Protection):
To enable the additional logging, run this operational command:
> set system setting additional-threat-log on
You can find the release notes here: PAN-OS 8.1 Release Information
Stay frosty
Reaper
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Subject | Likes |
---|---|
5 Likes | |
3 Likes | |
3 Likes | |
3 Likes | |
2 Likes |
User | Likes Count |
---|---|
11 | |
4 | |
3 | |
3 | |
2 |