- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
01-15-2014 10:04 AM
Hi,
Why is there a Maximum PAN-OS Version for some signatures? How can I tell if newer versions of PAN-OS can detect the same thing?
E.g. I saw this:
Severity | ID | Attack Name | Default Action | Minimum PAN-OS Version | Maximum PAN-OS Version |
---|---|---|---|---|---|
high | 20000 | Conficker DNS Request | alert | 3.0.0 | 4.1.0.0 |
Thanks,
Drew Daniels
01-15-2014 12:19 PM
I could find the same signature on 5.0.9 as well. So i guess for now we need to consider and go by only the minimum version.let me look further into it.
01-15-2014 03:14 PM
One more thing that i Observed from the release notes was the maximum versions are stated only for modified signatures .
01-21-2014 12:55 AM
There was a similar thread recently.
From what I understand it means that the modification only applies for PANOS 3.0.0 - 4.1.0.0.
That is if you run 4.1.1 or 5.0.x etc then there was no modification.
Could be good to know if you suddently starts to get alarms after the update is applied.
01-24-2014 11:40 AM
Yes I agree with you.That is about modification.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!