Information
Enable passive DNS monitoring within all anti-spyware profiles in use.
Rationale:
Enabling passive DNS monitoring improves PAN's threat prevention and threat intelligence capabilities. This is performed without source information delivered to PAN to ensure sensitive DNS information of the organization is not compromised.
Solution
Navigate to Objects > Security Profiles > Anti-Spyware Policies > Security.
For each anti-spyware profile in use, set the Enable Passive DNS Monitoring box under the DNS Signatures tab to be checked.
Default Value:
Not Configured