Threat log appears to have stopped.

Showing results for 
Show  only  | Search instead for 
Did you mean: 

Threat log appears to have stopped.

L2 Linker

Has anyone seen this happening, threat logs seemed to have stopped logging new information.


L6 Presenter

I guess everything else is running?

If you need to have it back on track I would suggest to try to reboot just the device-server (mgmt-plane) - but if its not critical its better if you can contact the support so they can see this for themselfs before restarting any processes. There is supposed to exist a watchdog which should automagically restart crashed processes so this might be due to something else, like a db or even hdd-crash (that is partition holding the particular table which threatlogs ends up in) or such?

L5 Sessionator

"set system setting logging log-suppression no" should resolve the logging issue.

- Yasu.

L6 Presenter

Related to bug id 50444. Fixed in PANOS 5.0.6. Snippet of release note:

With several threat prevention features, such as antivirus, if the same host downloaded the same virus from the same server multiple times at intervals more than five seconds apart, the threat log only showed the first download and did not show the subsequent downloads. This also occurred with file blocking and data filtering.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!