Advertisements

Forward Palo Alto Logs To Nagious Log Server

Paloalto-logo

Forwarding logs to a Nagious syslog server requires three steps

  1. Create a syslog server profile
    1. Go to Device > Server Profiles > Syslog
    2. Enter Name of the syslog server, Server IP address where the logs will be forwarded to, Port Number, Facility
  2. Configure the log-forwarding profile to select the threat logs to be forwarded to syslog server
    1. Go to Objects > Log forwarding
    2. Select the syslog server profile for forwarding threat logs to the configured server.
  3. Use the log forwarding profile in the security rules
    1. Go to Policies > Security Rule
    2. Select the rule for which the log forwarding needs to be applied. Apply the security profiles to the rule.
    3. Go to Actions > Log forwarding and select the log forwarding profile from drop down list.
  4. Commit the changes
Advertisements
%d bloggers like this: