Has anyone seen this happening, threat logs seemed to have stopped logging new information.
I guess everything else is running?
If you need to have it back on track I would suggest to try to reboot just the device-server (mgmt-plane) - but if its not critical its better if you can contact the support so they can see this for themselfs before restarting any processes. There is supposed to exist a watchdog which should automagically restart crashed processes so this might be due to something else, like a db or even hdd-crash (that is partition holding the particular table which threatlogs ends up in) or such?
Related to bug id 50444. Fixed in PANOS 5.0.6. Snippet of release note:
With several threat prevention features, such as antivirus, if the same host downloaded the same virus from the same server multiple times at intervals more than five seconds apart, the threat log only showed the first download and did not show the subsequent downloads. This also occurred with file blocking and data filtering.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!