As a best practice, use the WildFire
Analysis default profile to ensure complete coverage for traffic
the firewall allows. If you still decide to create a custom WildFire
Analysis profile, set the profile to forward
type—this enables the firewall to automatically start forwarding
newly-supported file types for analysis.
For each profile rule, set
to forward samples to the Advanced
WildFire cloud for analysis.
to a security policy rule to scan traffic the rules allows based
on WildFire antivirus signatures (select
and add or a modify
for a rule).
Control site access to web sites where Advanced WildFire
has identified the associated link as malicious or phishing.
This option requires a PAN-DB URL Filtering license.
Learn more about URL Filtering and how it enables you to control
web site access and corporate credential submissions (to prevent
phishing attempts) based on URL category.
modify a URL Filtering profile.
for the phishing and malicious URL categories.
users from accessing
sites in these categories altogether, or instead, allow access but
when users access sites
in these categories, to ensure you have visibility into such events.
Enable credential phishing prevention to stop users
from submitting credentials to untrusted sites, without blocking
their access to these sites.
Apply the new or updated URL Filtering profile, and
attach it to a security policy rule to apply the profile settings
to allowed traffic:
modify a security policy rule.
and in the Profile
Setting section, set the
Attach the new or updated
to the security policy rule.
to save the security policy
that the firewall is successfully forwarding samples.
If you enabled logging of benign files, select
check that entries are being logged for benign files submitted for
analysis. (If you’d like to disable logging of benign files after
confirming that the firewall is connected to a WildFire cloud, select
Report Benign Files
Other options to allow you to confirm that the firewall forwarded
a specific sample, view samples the firewall forwards according
to file type, and to view the total number of samples the firewall