CLI Cheat Sheet: CTD Evasion Detection
Table of Contents
11.2
Expand all | Collapse all
-
- Set Commands Introduced in PAN-OS 11.1
- Set Commands Removed in PAN-OS 11.1
- Show Commands Introduced in PAN-OS 11.1
- Set Commands Introduced in PAN-OS 11.2
- Set Commands Changed in PAN-OS 11.2
- Set Commands Removed in PAN-OS 11.2
- Show Commands Introduced in PAN-OS 11.2
- Show Commands Removed in PAN-OS 11.2
CLI Cheat Sheet: CTD Evasion Detection
Use the following table to quickly locate commands for CLI commands related
to CTD (content and threat detection engine) fail-close behavior.
These CLI commands are typically used for internal testing purposes or under the
guidance of Palo Alto Networks Support.
|
If you want to ...
|
Use ...
|
|---|---|
|
> set system setting ctd block-on-base64-decode-error enable
|
|
> set system setting ctd block-on-bdat-chunk-decode-error enable
|
|
> set system setting ctd block-on-chunk-decode-error enable
|
|
> set system setting ctd block-on-qp-decode-error enable
|
|
> set system setting ctd block-on-utf-decode-error enable
|
|
> set system setting ctd block-on-uu-decode-error enable
|
|
> set system setting ctd block-on-zip-decode-error enable
|
|
> set system setting ctd block-on-brotli-decode-error enable
|