cancel

Turn on suggestions

Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.

Showing results for

Search instead for

Did you mean:

Register
·
Sign In
·
FAQs

Get Started

Welcome to Live

Community Feedback

Community Help

FAQ
News & Events

PSIRT Articles

News

Social Feed

Events
Collaboration

Blogs

Articles

General Articles

Cortex XSOAR Articles

Prisma Access Insights Articles

Discussions

General Topics

Automation/API Discussions

Cortex XDR Discussions

Custom Signatures

Endpoint (Traps) Discussions

VirusTotal

VM-Series in the Public Cloud

Threat & Vulnerability Discussions

Best Practice Assessment Discussions

Prisma Access Discussions

Prisma Cloud Discussions

Prisma SaaS Discussions

GlobalProtect Discussions

Cortex XSOAR Discussions

Prisma Access Insights Discussions

Tools

Integration Resources

App for QRadar

Automation / API

Ansible

Palo Alto Networks Device Framework

Terraform

Cloud Integration

Expedition (Migration Tool)

HTTP Log Forwarding

Maltego for AutoFocus

MineMeld

Best Practice Assessment

Telemetry

Japan Community

Skillet District

Community Skillets

Skillet Tools

Community Skillets

Personal Skillets

Skillet Help & Suggestion

Skillets Blogs

Tools Discussions

Cyber Elite Program

Fuel User Group

Google Chrome Search Extension
Education Services

Education Services Upcoming Events

Education Services Articles

Certification

Instructor-Led Training

Digital Learning

Cybersecurity Academy

Second Watch

Education Services Help Center
Technologies
- Prisma Access
- Prisma Access Insights
- Prisma SaaS
- Prisma Cloud
- CN-Series
- VM-Series
- AWS
- GCP
- Azure
- Cortex XDR
- Cortex XSOAR
- Cortex Data Lake
Hub

Enterprise DLP
Resources

Beacon

Knowledge Base

Support Portal

Tech Docs

Cyberpedia

Applipedia

Security Advisories

Security Lifecycle Review

Threat DB
COVID-19 Response Center

Live
›
Collaboration
›
Discussions
›
Threat & Vulnerability
›
DNS Tunneling

DNS Tunneling

cancel

Turn on suggestions

Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.

Showing results for

Search instead for

Did you mean:

Topic Options

Subscribe to RSS Feed
Mark Topic as New
Mark Topic as Read
Float this Topic for Current User
Printer Friendly Page

All forum topics
Previous Topic
Next Topic

Torito

L0 Member

‎02-05-2020 06:39 AM

Mark as New
Subscribe to RSS Feed
Permalink
Print
Email to a Friend
Report This Content

‎02-05-2020 06:39 AM

DNS Tunneling

Im trrying to detect dns tunneling with custom signatures.

i have some snort rules to begin.

some of you have any strategies for this?

0 Likes

OtakarKlier

Cyber Elite

‎02-06-2020 02:51 PM

Mark as New
Subscribe to RSS Feed
Permalink
Print
Email to a Friend
Report This Content

‎02-06-2020 02:51 PM

Hello,

Why not just have a security policy to block it at the application layer?

Just a thought.

0 Likes

All forum topics
Previous Topic
Next Topic

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

Latest Blogs

New GlobalProtect 5.2.5 Features

Joe helps detail all of the new features...
Cyber Elite Spotlight Interview: @SteveCantwell

With more than 23 years of experience in...
DOTW: Aged-Out Session End in Allowed Traffic Logs

What exactly does it mean when a session...

Strata

Prisma

Cortex

DNS Tunneling

DNS Tunneling

Show your appreciation!