Palo Alto Networks firewalls are running PAN-OS 8.0.5 or later with the latest content version.
An internet gateway firewall has an interface configured in TAP mode.
***Eval Magnifier service must be activated using Eval Panorama software and Eval Logging service. Activating eval Magnifier auth codes on a production Panorama or production Logging Service will create a problem when you activate a purchased Magnifier auth code later.***
STEP 1 | Verify your firewall logs are populating in Logging Service
From Panorama, selectMonitorLogsand select a log type to view.
To verify that the logs you are seeing are from the Logging Service, run the following CLI command on the firewall:
> show logging-status
Use the ACC on Panorama and firewalls to monitor network activity . Check for applications like SMBv2, ms-rdp, DNS, and Kerberos to verify that the firewalls have visibility into internal network traffic.