1. Home
    2. WildFire
    3. WildFire® Administrator’s Guide
    4. Submit Files for WildFire Analysis
    5. Submit Malware or Reports from the WF-500 Appliance
    End-of-Life (EoL)
    Previous
    Next
    Enable the WF-500 appliance cloud intelligence feature to automatically submit malware samples discovered in the WildFire private cloud to the WildFire public cloud. The WildFire public cloud further analyzes the malware and generates a signature to identify the sample. The signature is then added to WildFire signature updates, and distributed to global users to prevent future exposure to the threat. If you do not want to forward malware samples outside of your network, you can instead choose to submit only WildFire reports for the malware discovered on your network to contribute to WildFire statistics and threat intelligence.
    Enable the WF-500 Appliance to Submit Malware or Reports to the WildFire Public Cloud
    Submit Malware to the WildFire Public Cloud Execute the following CLI command from the WF-500 appliance to enable the appliance to automatically submit malware samples to the WildFire public cloud: admin@WF-500# set deviceconfig setting wildfire cloud-intelligence submit-sample yes If the firewall that originally submitted the sample for WildFire private cloud analysis has packet captures (PCAPs) enabled, the PCAPs for the malware will also be forwarded to the WildFire public cloud.
    Submit Malware Reports to the WildFire Public Cloud If the WF-500 appliance is enabled to Submit Malware to the WildFire Public Cloud, you do not need to also enable the appliance to submit malware reports to the public cloud. When malware is submitted to the WildFire public cloud, the public cloud generates a new malware report for the sample. To enable the WF-500 appliance to automatically submit malware reports to the WildFire public cloud (and not the malware sample), execute the following CLI command on the WF-500 appliance: admin@WF-500# set deviceconfig setting wildfire cloud-intelligence submit-report yes
    Verify Cloud Intelligence Settings Check to confirm that cloud intelligence is enabled to either submit malware or submit malware reports to the WildFire public cloud by running the following command: admin@WF-500> show wildfire status Refer to the Submit sample and Submit report fields.
    Previous
    Next

    Recommended For You

    Recommended Videos

    Recommended videos not found.

    © 2022 Palo Alto Networks, Inc. All rights reserved.

    Techdocs Logo