HTTP Log Forwarding
HTTP Log Forwarding was introduced in PAN-OS 8.0 to enable better integration between your firewall and IT infrastructure by triggering an action or initiating a workflow on an external HTTP-based service when a log is generated on the firewall.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
HTTP Log Forwarding
HTTP Log Forwarding was introduced in PAN-OS 8.0 to enable better integration between your firewall and IT infrastructure by triggering an action or initiating a workflow on an external HTTP-based service when a log is generated on the firewall.

Browse the Community

HTTP LOG FORWARDING

HTTP Log Forwarding was introduced in PAN-OS 8.0 to enable better integration between your firewall and IT infrastructure by triggering an action or initiating a workflow on an external HTTP-based service when a log is generated on the firewall.

The goal of this page is to share different integration amongst the community. We want to hear from you! Please add any integrations that you come up with in the discussion area below.

Note: Support for HTTP Log Forwarding scripts/templates is provided via the Live Community discussion board on this page. Requests for technical support by phone or web will be redirected to this page.

Activity in HTTP Log Forwarding

While integrating panorama with SIEM server( using Syslog server profile ) for log forwarding from panorama to siem server facing system alert/log on

Spoiler
Spoiler
While integrating panorama with SIEM server( using Syslog server profile ) for log forwarding from panorama to siem server facing system alert/log on panorama i.e “ panorama lost it is connection to peer, No logs will be forwarded ”
Pano
...

Slack hooks server certificate invalid

Our firewalls cannot send to hooks.slack.com since they refreshed their cert yesterday (3/14/2023).

 

I suspect a problem with the way their chain is signing X1 root CA but until they fix it, is there a way to allow the log forwarding service to ignore

...

rlarose by L2 Linker
  • 9492 Views
  • 30 replies
  • 3 Likes

Resolved! How to set selective syslog server?

Can I set palo alto to check if syslog server is up before forwarding the log, and if the main syslog server is down then forward log to another server?

 

I have issues that I need palo alto to not forwarding logs to both servers at the same time.

 

Theerdam by L0 Member
  • 4036 Views
  • 3 replies
  • 0 Likes

PAN-OS 8.0 HTTP Log Integration with Slack

PAN-OS 8.0 HTTP Log Integration with Slack

 

This document assumes that you have already created a Slack team. This sample integration was done with a free Slack account. 

 

Once you have created your Slack team, login to your slack account and add a

...

Slack Integration Settings.png
HTTP Server Profile Entry Name.png
HTTP Server Profile Payload Format.png
Slack System Payload Format.png
rkemburu by L3 Networker
  • 46398 Views
  • 15 replies
  • 10 Likes

Resolved! Getting Error with SNMP Traps

Hi All,

 

We had configured SNMP V3 to forward all the logs to SNMP V3.

 

 

Is username/Engine ID/Auth and Private Password need to be configured for SNMP v3 to work properly

 

When checking the Logrcvr process log I could see the below error in the Log rcv

...

tamilvanan_0-1633528466608.png

How to avoid Netflow record for denied traffic

Hi !

we have configured Netflow server and the profile is attached to Inside interface, we are getting Netflow records and it seems working fine. but what we have observed is, we are seeing the Netflows for the traffic which is getting denied by Firew

...

Tulasi by L0 Member
  • 2571 Views
  • 1 replies
  • 0 Likes

SOC Duck

 

Description:

Build your own visual alert DUCKhickey that integrates with the Palo Alto Networks platform using the HTTP Log Forwarding feature in PAN-OS 8.X and above. I configured the SOC Duck in the Black Hat NOC to trigger and light up with th

...

Duck 1.jpg
Duck 2.jpg
Duck 3.jpg
Duck 4.jpg