Block Botnet Traffic

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Block Botnet Traffic

L4 Transporter

Hi All;  Is there now or will there be a way to block botnet traffic based on thresholds.  A few customers have fireeye and are looking for the same type of heuristic detection and blocking.

Is there a way we can block unknown (Zero Day) botnets using the botnet piece?

2 REPLIES 2

L6 Presenter

Botnet Reporting is a threat prevention feature. The PAN collates information from traffic, threat, URL logs to identify botnet-infected hosts. The report generated each day consists a list of infected hosts, description(why we believe the host is infected) and a Confidence level. You can configure the parameters in addition to the query indicating what traffic you'd like to see the botnet report on.

We do a very good job with zero day attacks through the combination of a few key capabilities:

We have a very close partnership with Microsoft via their MAPP program which gives us early access to most MS vulnerabilities, thus having signatures upon vulnerability disclosure. Our Threat Team is always proactively looking in the wild and researching new vulnerabilities. Our signatures are able to detect the attack against a vuln and not just the exploit. App-ID indirectly assists in detecting and prevention of new attacks as most uses high-risk apps as its mode of transportation. This will provide you another prevention method.

Regards,

Renato

In addition, you may contact your local Sales SE to see if there's anything on the roadmap related to your inquiry.

Regards,

Renato

  • 3811 Views
  • 2 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!