>
    View DNS Security Logs (NGFW (Managed by PAN-OS or Panorama))
    Focus
    Download PDF
    Focus
    1. Home
    2. Advanced DNS Security
    3. Monitor DNS Security Subscription Services
    4. View DNS Security Logs
    5. View DNS Security Logs (NGFW (Managed by PAN-OS or Panorama))
    Download PDF
    Advanced DNS Security

    PAN-OS

    Table of Contents

    View DNS Security Logs (
    NGFW (Managed by PAN-OS or Panorama)
    )

    2. Search for activity on the firewall for queries that have been processed using DNS Security.
      1. Select
        Monitor
        Logs
        Threat
         and filter based on the DNS category.
        Consider the following examples:
        • ( category-of-threatid eq dns-c2 )
           to view logs that have been determined to be a C2 domain by DNS Security.
        • ( category-of-threatid eq adns-hijacking )
          , whereby the variable
          adns-hijacking
           indicates DNS queries that have been categorized as a malicious DNS hijacking attempt by Advanced DNS Security.
        To search for other DNS types, replace c2 with another supported DNS category (ddns, parked, malware, etc).
      2. Select a log entry to view the details of a detected DNS threat.
      3. The threat
        Category
         is displayed in the
        Details
         pane of the detailed log view. Other relevant details about the threat are displayed in their corresponding windows.

    Recommended For You

    © 2024 Palo Alto Networks, Inc. All rights reserved.