Hello Hulk, I have some questions regarding the relationship between Wildfire, PAN-DB and the DNS Suspicious Query signatures in the AV database. Based on your earlier reply, if Wildfire detects Malware from a file that is analyzed in the cloud, it will pass the DNS hosts that's part of the analysis to PAN-DB to be categorized as Malware. Correct??? How about updating the DNS Suspicious Query signatures in the AV database, does it do that? The reason I ask is because I ran some of the DNS Queries information from my Wildfire Analysis Report of malicious files against my PANW firewalls Suspicious DNS Query entries and they are not listed. You would think that Palo Alto would add those hosts to the DNS Suspicious Query database. Any help you can provide would be helpful. Thanks, Jeff
... View more