For threat logs in PA i see below options
( subtype neq vulnerability ) and ( subtype neq spyware ) and ( subtype neq packet ) and ( subtype neq scan )
need to know if this makes sense ??
where vulnerability is part of vul protection scecurity profile which is layer 7 ??
spyware is anti spyware profile which is also layer 7 ???
scan and packet are they part of zone protection profile?
So all here is layer 7 protection?