: WildFire Switzerland Cloud
Focus
Focus

WildFire Switzerland Cloud

Table of Contents

WildFire Switzerland Cloud

A new WildFire regional cloud is now available in Switzerland. The WildFire Switzerland cloud provides the best of both worlds for Palo Alto Networks customers located in Switzerland — customers can now utilize the WildFire cloud-based threat analysis and prevention engine, while ensuring that files submitted for analysis stay in the country to address data location concerns. Note that certain metadata connected to submitted samples, as described in the WildFire Privacy Datasheet, are shared with our other regional clouds. While submissions stay within Swiss borders, customers still benefit from the global security intelligence and updates based on the network effect of Palo Alto Networks 42,000+ WildFire customers. Sensitive data and submissions are restricted from leaving Switzerland when using the WildFire cloud threat analysis service. Samples submitted to the WildFire Switzerland cloud and the resulting malware analysis, signature generation and delivery occur and remain within Swiss borders.
Any firewall with basic WildFire service enabled can forward PE (portable executables) samples to the WildFire Switzerland cloud for analysis, while users with an active Advanced WildFire or standard WildFire subscription can forward all supported file types. You can access the WildFire Switzerland portal using your support account credentials to manually upload files for analysis and view WildFire analysis reports.
You can submit samples to the WildFire Switzerland cloud from the WildFire appliance, WildFire Switzerland portal, through the WildFire API, and all Palo Alto Networks platforms that support the WildFire security subscription integration.
  • Submit samples to the WildFire Switzerland cloud from the firewall.
    1. Log in to the firewall and select Device > Setup > WildFire and edit General Settings.
    2. Enter the URL for the WildFire Switzerland cloud: ch.wildfire.paloaltonetworks.com
    3. Click OK to save your settings.
  • Submit locally-discovered malware or sample reports to the WildFire Switzerland cloud for additional analysis.
    Enable a WildFire appliance to submit locally-discovered malware or sample reports to the WildFire Switzerland cloud for additional analysis and signature distribution:
    1. Connect the WildFire appliance to the WildFire Switzerland cloud by entering the following command from the WildFire appliance CLI:
      admin@WF-500# set
      deviceconfig setting cloud-server ch.wildfire.paloaltonetworks.com
    2. Enter the following command to submit malware to the WildFire Switzerland cloud:
      admin@WF-500# set
      deviceconfig setting wildfire cloud-intelligence submit-sample yes
  • Manually submit samples to the WildFire Switzerland cloud using the WildFire Switzerland portal.
    You can manually submit samples to the WildFire Switzerland cloud using the WildFire Switzerland portal: https://ch.wildfire.paloaltonetworks.com.
    After uploading files or URLs to the WildFire Switzerland portal, you can also view the WildFire analysis verdict and report for the sample.
  • Submit samples through the WildFire API
    Use the following resources to submit samples through the WildFire API to the WildFire Switzerland cloud:
    • Submit a file: https://ch.wildfire.paloaltonetworks.com/publicapi/submit/file
    • Submit a file through a URL: https://ch.wildfire.paloaltonetworks.com/publicapi/submit/url
    • Submit a URL: https://ch.wildfire.paloaltonetworks.com/publicapi/submit/link
    • Submit multiple URLs: https://ch.wildfire.paloaltonetworks.com/publicapi/submit/links
    To get information about your file submissions to the WildFire Switzerland cloud, you must also use the base URI that corresponds to the WildFire Switzerland cloud. Example:
    https://ch.wildfire.paloaltonetworks.com/publicapi/get/verdict
xThanks for visiting https://docs.paloaltonetworks.com. To improve your experience when accessing content across our site, please add the domain to the allow list on your ad blocker application.