Who Me Too'd this topic

Who Me Too'd this topic

L0 Member

Syslog analyzer / miner supported PanOS versions?

Hi

 

I'v been using the stdlib.localSyslogToLogstash prototype, https://live.paloaltonetworks.com/t5/MineMeld-Articles/Correlating-PAN-OS-syslog-with-indicators/ta-... , for while now with no issues but after upgrading PanOS from 7.1 to 8.0 (currently at 8.0.13) it is no longer working correctly. I get SYSLOG.PROCESSED = 0 so it seems the messages are no longer parsed correctly.

 

I can still se that messages are received by using tcpdump.

 

Searching this board I have found a few threads with the same issue but none of them are resolved and I can not find any clear information on supported PanOS versions so before trying to setup a new minemeld instance and spending time debugging this I'd like to know if it should be working at all with 8.0?

 

 

Who Me Too'd this topic