This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Cookie Policy. Click Preferences to customize your cookie settings.
Panorama. howto retrive old logs ?
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- Discussions
- General Topics
- Re: Panorama. howto retrive old logs ?
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Printer Friendly Page
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
04-12-2011 01:51 AM
Hi,
I have panoram installed and configured. I have my PA FW that is now sending traffic logs and system logs, and threat logs to the Panorama.
1. How can I configure PA FW to send URL logs to the Panorama ?? as I do not see any url logs in the panoram from the PA FW ?
2. Panoram is now reading the current logs, how can I export the existing 1 month old logs from PA FW to panorama ?
Please advise.
Rgds,
Tauseef
1 ACCEPTED SOLUTION
Accepted Solutions
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
04-28-2011 10:07 AM
If you set up the firewall first and ran it for a a few weeks and then later installed Panorama then there is no way to export the old logs to Panorama. The best you can do is build a filter on the traffic monitor and then export to CSV but you will have to sift through this manually. You can submit this as a feature request if it is important to you.
Steve Krall
8 REPLIES 8
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
04-21-2011 03:51 PM
Tauseef,
Check your profile and make sure you are sending "Informational" and "Low" level events. I believe the URL filtering alerst are considered informational. Also make sure your URL catagories are configured for ALERT or BLOCK. ANything configured for allow will not be logged.
Steve Krall
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
04-23-2011 10:37 PM
Hi Karl,
Thanks for this one, but my question was that when I had Panorama installed, already 40% logs were in the PA Firwall.
From the date I have configured the profile in PA for Panorama, all logs are being sent to the Panorama.
But the first 40% of logs that are in Palo Alto Firewall are still there in the same firewall.
How do I get the first 40% of these logs into the Panorama ??
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
04-28-2011 10:07 AM
If you set up the firewall first and ran it for a a few weeks and then later installed Panorama then there is no way to export the old logs to Panorama. The best you can do is build a filter on the traffic monitor and then export to CSV but you will have to sift through this manually. You can submit this as a feature request if it is important to you.
Steve Krall
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
04-30-2011 10:49 PM
Hi Karll,
How do I get the URL entries from the device to Panorama.
I know we have to set for 'informational or low', but its not working ! ((See attached log1)
I also tried creating a new rule and allowed only URL Alert, but still not working. (See Rule Alert)
Please advise.
Like what you see?
Show your appreciation!
Click Like if a post is helpful to you or if you just want to show your support.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks