https://live.paloaltonetworks.com/t5/next-generation-firewall/nips/m-p/583665#M2974 <P>Hello&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/751899537">@Kiruba007</a></P> <P>&nbsp;</P> <P>thanks for post.</P> <P>&nbsp;</P> <P>Would it be possible to add more context?</P> <P>&nbsp;</P> <P>If you are looking into logs directly in Firewall / Panorama, then you can find them under: Monitor &gt; Logs &gt; Threat. If you are referring to logs in SIEM, then this would depend how you ingest logs. You can separate threat logs in CEF while ingesting:&nbsp;<A href="https://docs.paloaltonetworks.com/resources/cef" target="_blank">https://docs.paloaltonetworks.com/resources/cef</A>.</P> <P>&nbsp;</P> <P>Kind Regards</P> <P>Pavel</P> Mon, 15 Apr 2024 03:33:09 GMT PavelK 2024-04-15T03:33:09Z https://live.paloaltonetworks.com/t5/next-generation-firewall/nips/m-p/583215#M2964 <P>How do we identify NIPS logs among Paloalto Firewall logs ?</P> Wed, 10 Apr 2024 12:41:57 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/nips/m-p/583215#M2964 Kiruba007 2024-04-10T12:41:57Z https://live.paloaltonetworks.com/t5/next-generation-firewall/nips/m-p/583665#M2974 <P>Hello&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/751899537">@Kiruba007</a></P> <P>&nbsp;</P> <P>thanks for post.</P> <P>&nbsp;</P> <P>Would it be possible to add more context?</P> <P>&nbsp;</P> <P>If you are looking into logs directly in Firewall / Panorama, then you can find them under: Monitor &gt; Logs &gt; Threat. If you are referring to logs in SIEM, then this would depend how you ingest logs. You can separate threat logs in CEF while ingesting:&nbsp;<A href="https://docs.paloaltonetworks.com/resources/cef" target="_blank">https://docs.paloaltonetworks.com/resources/cef</A>.</P> <P>&nbsp;</P> <P>Kind Regards</P> <P>Pavel</P> Mon, 15 Apr 2024 03:33:09 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/nips/m-p/583665#M2974 PavelK 2024-04-15T03:33:09Z