05-17-2022 03:28 PM
We have several hundred Global Protect users using Auto VPN. It would be nice to
see their global protect logs, ipconfig /all, netstat -rn information before calling them
back on a filed ticket. Can Cortex collect these logs on a regular basis without
user involvement? What has to be enabled at the GP client and/or PAN to
allow this log collection to occur?
06-10-2022 12:03 PM
Hi Palomed,
If you have a Cortex Data Lake license, Global Protect logs can be forwarded to the Cortex Data Lake for stitching from your PAN firewall. Please refer to your PAN-OS TechDocs Documentation for how to configure.
Thanks
07-13-2022 11:19 AM
You may forward Global Protect logs to the Cortex Data Lake for stitching from your PANW firewall. If you need assistance with configuring please open a support case.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
