cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

No logs in the monitor > traffic tab?

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

No logs in the monitor > traffic tab?

Ayush_paloalto
L0 Member

‎06-10-2019 11:18 PM

Hello All,


1.) I have just installed Palo Alto 7.1 in Eve-NG, and  made two interfaces as Vwire with zone Trust and Untrust.

2.) I am able to access access everthing (e.g. internet, ping, etc.) hence policies are working fine  as I have created a policy to allow everything from Trust to Untrust.

 

However I am not able to see any Traffic logs in the GUI it is blank.

Kindly see the below screenshot for your reference and let me know what's the reason please.

no logs.png


Thanks in advance.

0 Likes Likes
13 REPLIES 13

hshawn
L4 Transporter

‎06-11-2019 09:00 AM

This may sound obvious but make sure you are enabling the logging on  the security policies your traffic is hitting. you can log at session start and or sesssion end. 

OtakarKlier
Cyber Elite
Cyber Elite
In response to hshawn

‎06-11-2019 09:24 AM

Hello,

Also the default intra and inter zone policies do not log so you have to set them to log as well.

 

Regards,

MP18
Cyber Elite
Cyber Elite
In response to OtakarKlier

‎06-12-2019 09:26 PM

Yes i agree with Okta.

MP
0 Likes Likes

htawedrous
L0 Member

‎04-23-2020 11:52 AM

Hello,

Does anybody got a resolution? I have the same problem with a PA in EVE-NG. Tried 2 different images. thank you

0 Likes Likes

ravisingh.z
L0 Member

‎04-24-2020 02:06 PM

Same issue, logs are not showing in GUI and as well as CLI but logs are being written.

 

admin@PA-VM> show log traffic
Time App From Src Port Source
Rule Action To Dst Port Destination
Src User Dst User End Reason
Rule_UUid
====================================================================================================
admin@PA-VM> debug log-receiver statistics

Logging statistics
------------------------------ -----------
Log incoming rate: 1/sec
Log written rate: 1/sec
Corrupted packets: 0
Corrupted URL packets: 0
Corrupted HTTP HDR packets: 0
Corrupted HTTP HDR Insert packets: 0
Corrupted EMAIL HDR packets: 0
Logs discarded (queue full): 0
Traffic logs written: 120

 

0 Likes Likes

htawedrous
L0 Member
In response to ravisingh.z

‎04-24-2020 07:18 PM

I read that the VM needs to be licensed for monitoring, clustering and some other features to work. Not sure if it’s true

ACHABROUK
L0 Member
In response to htawedrous

‎05-09-2020 09:10 AM - edited ‎05-09-2020 09:29 AM

Yes the VM needs to be licensed, 

but you can still see some logs over 

 

Policies>security> "click on your rule" > usage 

 

Or-  from CLI 

> show session all 

 

thanks!

SyedHyder
L0 Member
In response to htawedrous

‎06-18-2020 09:56 AM

 

did you find a solution, I have the same problem...

0 Likes Likes

SyedHyder
L0 Member

‎06-18-2020 05:28 PM

 

Palo doesn't log on VM PAN OS without license...

 

 

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm2mCAC

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Copyright 2007 - 2021 - Palo Alto Networks