Config Log Forwarding

  Рет қаралды 23,952

Palo Alto Networks LIVEcommunity

Palo Alto Networks LIVEcommunity

Күн бұрын

Пікірлер: 9
@aritramuherjee2737
@aritramuherjee2737 2 жыл бұрын
Thanks...this is very helpful. Kindly make a session for paloalto mschapv2 configuration with Radius server
@andrewohanian5132
@andrewohanian5132 4 жыл бұрын
I didn't realize Wildfire can issue multiple verdicts for a submitted file. So it can indeed issue a verdict of malicious AND phishing? At 10:28 the presenter says "either malicious OR phishing verdicts" so I'm wondering if that connector should have been "or" instead.
@futbolcamilo8410
@futbolcamilo8410 3 жыл бұрын
agree, should be OR
@RishiRap
@RishiRap 19 күн бұрын
"Nice Video. But could you pls also mention how to verify from CLI. I tried "show logging-status" & "show log-setting preference" command but still did not get clear picture. I could not find any cli commands to verify all those syslog entries in log forwarding profile and not even to verify syslog profiles.
@lukeb0030
@lukeb0030 10 ай бұрын
at 9:00 where you created the filter for WildFire logs - you used an 'and' operator but afterwards you kept speaking of it as though it was an 'or' operator. Is that a mistake ? Does it need to match both malicious and phishing to be forwarded - or would a match on either result in the log being forwarded ?
@Danlovestrivium
@Danlovestrivium 7 ай бұрын
No, what he created means that it would have to match on both the 'malicious' and 'phishing' categories or it will not send the log. Based on how he built this, he's going to be missing a lot (if not all) of the alerts he's hoping to receive from the Wildfire Log Type. The correct connector, in this case, would to have the setting of "Or" as opposed to "And" in order to trigger a log forward condition on either one of these filters.
@kbhushan12
@kbhushan12 Жыл бұрын
Excellent video.
@RicardoMartinez-vo7hv
@RicardoMartinez-vo7hv Жыл бұрын
What about user id logs? I cannot add a match condition for user id logs ina log forwarding profile.
@lukeb0030
@lukeb0030 10 ай бұрын
Check under Device > logging settings for User-ID log forwarding
Config Predefined Reports
6:41
Palo Alto Networks LIVEcommunity
Рет қаралды 4,9 М.
УДИВИЛ ВСЕХ СВОИМ УХОДОМ!😳 #shorts
00:49
Sigma Kid Mistake #funny #sigma
00:17
CRAZY GREAPA
Рет қаралды 18 МЛН
How Much Tape To Stop A Lamborghini?
00:15
MrBeast
Рет қаралды 263 МЛН
What type of pedestrian are you?😄 #tiktok #elsarca
00:28
Elsa Arca
Рет қаралды 43 МЛН
Tutorial: Understanding the NAT/Security Policy Configuration
12:47
Palo Alto Networks LIVEcommunity
Рет қаралды 108 М.
Tutorial: Searching Through Logs: Where Do I Start?
15:00
Palo Alto Networks LIVEcommunity
Рет қаралды 25 М.
GlobalProtect Best Practices, Tuning and Resources
29:22
Palo Alto Networks LIVEcommunity
Рет қаралды 32 М.
Setup centralized syslog server
19:57
Ed Goad
Рет қаралды 60 М.
Importing Device Configurations Into Panorama
6:30
Palo Alto Networks LIVEcommunity
Рет қаралды 31 М.
Cloudflare Tunnels
19:01
Syntax
Рет қаралды 3,2 М.
What is Policy Based Forwarding in Paloalto ?
14:03
Network Buzz
Рет қаралды 3,5 М.
УДИВИЛ ВСЕХ СВОИМ УХОДОМ!😳 #shorts
00:49