This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About tobias.blaume
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About tobias.blaume
03-10-2023
1Post
0Likes
0Solutions
Mar 10, 2023Last Visited
User
Activity
User
Profile
Latest posts by tobias.blaume
| Subject | Views | Posted |
|---|---|---|
| 515 | 08-01-2022 06:28 AM |
User Badges
Community Statistics
| Member Since | 10-12-2015 02:00 AM |
| Date Last Visited | 03-10-2023 04:53 AM |
| Posts | 1 |
08-01-2022
06:28 AM
Hi everyone,
during migration of our log analysis from splunk to azure sentinel, we experienced significantly higher volume of logs on Sentinel then we did on splunk. We were actually sending logs to both and Sentinel showed more then twice the volume per day then splunk.
Only real difference is that we had to change to custom CEF log format that we configured according to the documentation from Palo Alto. Can this increase be caused by the different log type, or is it just splunk compressing the raw data before counting it against the license? Any ideas or experience welcome.. Thanks!
... View more
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks