Network technologies and trends

Jan 20 2016   5:29AM GMT

How to configure log forwarding in Palo Alto Networks Firewall? – Series 2

Yasir Irfan Yasir Irfan Profile: Yasir Irfan

Tags:
Administrator
application
Default route
Ethernet
Firewalls
HA
Interface
Layer 2
LAYER3
logging
Loopback
Palo Alto Networks
Security policy
Services
Static route
tunnel
URL
Users
VLAN

In this post we will continue the configuration of log forwarding in Palo Alto Networks Firewall, in previous post we saw how to add a Syslog Server Profile

Step 4 –  Provide any valid name for the Log Forwarding profile and select the Syslog Server configured in Step 2

You could see Palo Alto Network Firewalls logging profile has many options , one has the flexibility to forward the logs to all the options available. The good thing I see you can even email the critical Threats or WildFire actions by email. In this post we will stick to configuring Syslog.

Log forwarding 4

Step 5 – Select the log field you want to forward to your Syslog Server, it always better to chose the Severity based on your organizational needs as shown below

Log forwarding 5

Your final log forwarding Profile should look like this

Log forwarding 6

Step 6 – Applying the log forwarding action

In Palo Alto Firewalls one can apply Log Forwarding action to either Security Policy Rule or Zone , both are independent logs.

Log forwarding 7

By following the above mentioned steps one can enable log forwarding in Palo Alto Networks Firewall.

 

 Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: