Use the credentials associated with your Palo Alto Networks support account and
log in to the Strata Logging Service application on the hub.
Allocate Storage Based on Log Type. If
storage space has not been allocated for DNS Security logs on Strata Logging Service, logging entries will not be viewable through Strata Logging Service.
Search for DNS queries that have been processed using DNS Security in Strata Logging Service.
Select Explore to open the Strata Logging Service log viewer.
Constrain your search using the threat filter and submit a log query
based on the DNS category, for example, threat_category.value =
'dns-c2' to view logs that have been determined to be a C2
domain. To search for other DNS types, replace c2 with another supported
DNS category (ddns, parked, malware, etc). Adjust the search criteria as
necessary for your search, including additional query parameters (such
as the severity level and subtype) along with a date range.
Select a log entry to view the details of a detected DNS threat.
The threat Category is displayed in the
Details pane of the detailed log view. Other
relevant details about the threat are displayed in their corresponding
windows.
