Versions Compared

Version Old Version 1 New Version 2
Changes made by

Gary Leicht

Gary Leicht

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

The following table lists the default actions and precedence for the feeds and Threat Insight in the Default Global Policy:

The following table lists the default actions and precedence for the feeds and Threat Insight in the Default Global Policy:

Feed NameDefault ActionDefault Precedence
BaseBlock  – No Redirect1
AntiMalwareBlock  – No Redirect2
Malware_DGABlock  – No Redirect3
RansomwareBlock  – No Redirect4
SURBL_MultiBlock  – No Redirect5
ExploitKit_IPBlock  – No Redirect6
Public DOHBlock  – No Redirect7
Public DOH IPBlock  – No Redirect8
ThreatInsight-DGAAllow – With Log9
ThreatInsight-DataExfiltrationAllow – With Log10
ThreatInsight-FastFluxAllow – With Log11
ThreatInsight-DNSMessengerAllow – With Log12
AntiMalware_IPAllow – With Log13
Bot_IPAllow – With Log14
SpamBot IPAllow – With Log15
Extended Base & Malware hostnameAllow – With Log16
Extended Ransomware hostnameAllow – With Log17
Extended Malware IPAllow – With Log18
Extended ExploitKit IPAllow – With Log19
SURBL_FreshAllow – With Log20
DHS_AIS_DomainAllow – With Log21
FarSight Newly Observed DomainsAllow – With Log22
CryptoCurrencyAllow – With Log23
TOR_Exit_Node_IPAllow – With Log24




Table filter
inverse,,
sparkNameSparkline
limitHeight
separatorPoint (.)
labels‚‚
default,,
isFirstTimeEntertrue
cell-width,,
userfilterFeed Name,Default Action,Default Precedence
datepatternM dd, yy
id1607751147762_238350309
worklog365|5|8|y w d h m|y w d h m
isORAND
order0,1,2


Feed NameDefault ActionDefault Precedence
BaseBlock  – No Redirect1
AntiMalwareBlock  – No Redirect2
Malware_DGABlock  – No Redirect3
RansomwareBlock  – No Redirect4
SURBL_MultiBlock  – No Redirect5
ExploitKit_IPBlock  – No Redirect6
Public DOHBlock - No Redirect7
Public DOH IPBlock - No Redirect8
ThreatInsight-DGAAllow – With Log9
ThreatInsight-DataExfiltrationAllow – With Log10
ThreatInsight-FastFluxAllow – With Log11
ThreatInsight-DNSMessengerAllow – With Log12
AntiMalware_IPAllow – With Log13
Bot_IPAllow – With Log14
SpamBot IPAllow – With Log15
Extended Base & Malware hostnameAllow - With Log16
Extended Ransomware hostnameAllow – With Log17
Extended Malware IPAllow – With Log18
Extended ExploitKit IPAllow - With Log19
SURBL_FreshAllow – With Log20
DHS_AIS_DomainAllow – With Log21
FarSight Newly Observed DomainsAllow - With Log22
CryptoCurrencyAllow – With Log23
TOR_Exit_Node_IPAllow – With Log24


...