Trying to find a method to prevent GlobalProtect logs from forwarding to our SIEM.
I am trying to find the correct configuration to prevent or exclude globalprotect logs from forwarding to our SIEM. I have filtered the type of event "globalprotect" but dont seem to be able to configure this as a filter in my log forwarding on my appliance. The above log entry is from "System" but this is not listed as a log type to choose fro...




