https://community.checkpoint.com/t5/Firewall-and-Security-Management/IOC-import/m-p/27123#M58432 <HTML><HEAD></HEAD><BODY><P>Thank you, Dameon. I saw that some filds were not supported. But was confused where is the exact problem, because they file should be standardized.&nbsp;</P><P>We will open the case.&nbsp;</P><P></P><P>Regards,&nbsp;</P><P>Milica</P></BODY></HTML> Sat, 15 Sep 2018 05:58:12 GMT Milica_Spasic 2018-09-15T05:58:12Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/IOC-import/m-p/27121#M58430 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>I have tried to import IoC downloaded from IBM xforce exchange web site in order to prevent some malicious activities, but if had failed. I'm using stix format (example file is attached). I receive following error:</P><P></P><P><IMG class="image-1 jive-image" src="https://community.checkpoint.com/legacyfs/online/checkpoint/70301_pastedImage_1.png" /></P><P>Our management is on 80.20 version.</P><P>Any idea what couses the problem?</P><P></P><P>Kind regards,</P><P>Milica</P></BODY></HTML> Fri, 14 Sep 2018 12:33:50 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/IOC-import/m-p/27121#M58430 Milica_Spasic 2018-09-14T12:33:50Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/IOC-import/m-p/27122#M58431 <HTML><HEAD></HEAD><BODY><P>Is it the R80.20 EA or R80.20.M1?</P><P>Anyway, the errors seem to be somewhat obvious:</P><UL><LI>Several fields in the XML file aren't supported by us--those are ignored.</LI><LI>Since confidence, severity, and product aren't included in this XML (which we use), we specify defaults.</LI><LI>From this file, it seems we cannot determine the IOCs, or it's not in the format we expect.</LI></UL><P>Assuming it's R80.20.M1, I would open a TAC case.</P></BODY></HTML> Sat, 15 Sep 2018 00:31:17 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/IOC-import/m-p/27122#M58431 PhoneBoy 2018-09-15T00:31:17Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/IOC-import/m-p/27123#M58432 <HTML><HEAD></HEAD><BODY><P>Thank you, Dameon. I saw that some filds were not supported. But was confused where is the exact problem, because they file should be standardized.&nbsp;</P><P>We will open the case.&nbsp;</P><P></P><P>Regards,&nbsp;</P><P>Milica</P></BODY></HTML> Sat, 15 Sep 2018 05:58:12 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/IOC-import/m-p/27123#M58432 Milica_Spasic 2018-09-15T05:58:12Z