https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1232442#M6013 <P>Thanks for your response.</P><P>Just to clarify, I’m looking for logs for both:</P><UL><LI><P><STRONG>SIEM Integration</STRONG>: We’re testing alert rules and correlation based on Palo Alto Networks (PAN) logs. This includes high and critical severity events, along with specific log types like threat, traffic, config, and system logs.</P></LI><LI><P><STRONG>Direct from PAN</STRONG>: We’re also reviewing alerting capabilities directly from the PAN platform, so we need log samples to help with testing, enrichment, and validation.</P></LI></UL><P>If you could share sample logs (sanitized if needed) for key PAN log types like <STRONG>THREAT</STRONG>, <STRONG>TRAFFIC</STRONG>, <STRONG>SYSTEM</STRONG>, <STRONG>CONFIG</STRONG>, <STRONG>HIPMATCH</STRONG>, and <STRONG>CORRELATION</STRONG>, that would be very helpful for our integration work.</P><P>Thanks again</P> Tue, 24 Jun 2025 03:36:50 GMT suresh.nalamolu 2025-06-24T03:36:50Z https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1232199#M6004 <P>Hi team,</P><P><BR />I'm currently working on integrating log analysis and would like to collect sample log events for <STRONG>all Next Generation Firewall log event types</STRONG></P><P>Is there a way to access a reference dataset or sample payloads for each log event type for testing and validation purposes?</P><P>Thanks in advance!&nbsp;</P> Fri, 20 Jun 2025 08:03:25 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1232199#M6004 suresh.nalamolu 2025-06-20T08:03:25Z https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1232389#M6011 <P>Hello,</P> <P>I'm have not seen one. I do alert on High and Critical events. Alerting by criticality rather than an actual event. Some events I do create specific alerts on however.</P> <P>Is this for a SIEM or from the PAN?</P> <P>Regards,</P> Mon, 23 Jun 2025 19:43:17 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1232389#M6011 OtakarKlier 2025-06-23T19:43:17Z https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1232442#M6013 <P>Thanks for your response.</P><P>Just to clarify, I’m looking for logs for both:</P><UL><LI><P><STRONG>SIEM Integration</STRONG>: We’re testing alert rules and correlation based on Palo Alto Networks (PAN) logs. This includes high and critical severity events, along with specific log types like threat, traffic, config, and system logs.</P></LI><LI><P><STRONG>Direct from PAN</STRONG>: We’re also reviewing alerting capabilities directly from the PAN platform, so we need log samples to help with testing, enrichment, and validation.</P></LI></UL><P>If you could share sample logs (sanitized if needed) for key PAN log types like <STRONG>THREAT</STRONG>, <STRONG>TRAFFIC</STRONG>, <STRONG>SYSTEM</STRONG>, <STRONG>CONFIG</STRONG>, <STRONG>HIPMATCH</STRONG>, and <STRONG>CORRELATION</STRONG>, that would be very helpful for our integration work.</P><P>Thanks again</P> Tue, 24 Jun 2025 03:36:50 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1232442#M6013 suresh.nalamolu 2025-06-24T03:36:50Z https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1232474#M6015 <P>I'm not sure about the platform you are using but I found this</P><P>&nbsp;</P><P><A href="https://github.com/PaloAltoNetworks/Splunk-App-Data-Generator" target="_blank">PaloAltoNetworks/Splunk-App-Data-Generator: Sample data generator for the Splunk for Palo Alto Networks app.</A></P> Tue, 24 Jun 2025 12:07:50 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1232474#M6015 murali438 2025-06-24T12:07:50Z https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1232940#M6048 <P>Any update</P> Tue, 01 Jul 2025 06:10:20 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1232940#M6048 suresh.nalamolu 2025-07-01T06:10:20Z https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1233597#M6063 <P>can you provide sample schema for these <STRONG>THREAT</STRONG><SPAN>,&nbsp;</SPAN><STRONG>TRAFFIC</STRONG><SPAN>,&nbsp;</SPAN><STRONG>SYSTEM</STRONG><SPAN>,&nbsp;</SPAN><STRONG>CONFIG</STRONG><SPAN>,&nbsp;</SPAN><STRONG>HIPMATCH</STRONG><SPAN>, and&nbsp;</SPAN><STRONG>CORRELATION in Json format.</STRONG></P> Wed, 09 Jul 2025 07:24:22 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1233597#M6063 suresh.nalamolu 2025-07-09T07:24:22Z https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1233663#M6071 <P>Hello&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/194129197">@suresh.nalamolu</a>&nbsp;</P> <P>&nbsp;</P> <P>You can find all the fields for each type of logs in the documentation.<BR /><A href="https://docs.paloaltonetworks.com/pan-os/11-1/pan-os-admin/monitoring/use-syslog-for-monitoring/syslog-field-descriptions" target="_blank">https://docs.paloaltonetworks.com/pan-os/11-1/pan-os-admin/monitoring/use-syslog-for-monitoring/syslog-field-descriptions</A>&nbsp;</P> <P>&nbsp;</P> <P>Olivier</P> Thu, 10 Jul 2025 02:59:47 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/need-sample-logs-for-all-next-generation-firewall-log-events-for/m-p/1233663#M6071 ozheng 2025-07-10T02:59:47Z