05-29-2024 06:12 AM
Is it possible to create a rule/application (or if there is an existing one) to block certain bots from scanning websites behind the firewall? I see the claude application, but I'm guessing this is more for outbound requests than for blocking the bot. thanks!
06-03-2024 01:42 PM
Hello,
Do you have example traffic so you can see what the app-id is being flagged as? There are various scan vulnerability that are a part of the vulnerability profile so you should make sure you have that attached to your policies. As well as I would look into reconnaissance protection, which is apart of the zone protection profiles. Reconnaissance Protection (paloaltonetworks.com)
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
