Educause Security Discussion mailing list archives
Re: Palo Alto Panorama Logging
From: Nathaniel Hall <educause-lists () NATHANIELHALL COM>
Date: Thu, 27 Apr 2017 19:57:10 -0500
I implement a lot of Palo Alto devices for a variety of companies in a variety of industries. In nearly every instance I see either Splunk or Firemon implemented as a supplement to Panorama. -- Nathaniel Hall, GSEC GPPA GCIA GCIH GCFA CNSE On 4/27/2017 3:51 PM, Brandon Dixon wrote:
We have been running Palo Alto's Panorama central management & logging platform for a little over a year now. We have a couple of 10Gb firewalls and a 1Gb firewall that it manages and collects logs from. We've had issues since we set it up that we've been working with TAC to try and resolve and have not been able to. But even despite those, I find the log search to be pretty weak and cumbersome when it comes to trying to track down a specific log file. My question is, for those who run Panorama, are you using anything alongside Panorama to collect/analyze/search the logs from it? If so, do you bother giving Panorama a large amount of storage?
Current thread:
- Palo Alto Panorama Logging Brandon Dixon (Apr 27)
- Re: Palo Alto Panorama Logging Bradley, Stephen (Apr 27)
- Re: Palo Alto Panorama Logging JR Ramirez (Apr 27)
- Re: Palo Alto Panorama Logging Everett, Alex D (Apr 27)
- Re: Palo Alto Panorama Logging JR Ramirez (Apr 27)
- Re: Palo Alto Panorama Logging Nathaniel Hall (Apr 27)
- Re: [EXTERNAL] [SECURITY] Palo Alto Panorama Logging Klein Keane, Justin (Apr 28)
- Re: [EXTERNAL] [SECURITY] Palo Alto Panorama Logging Brandon Dixon (Apr 28)
- Re: [EXTERNAL] [SECURITY] Palo Alto Panorama Logging Bradley, Stephen (Apr 28)
- Re: [EXTERNAL] [SECURITY] Palo Alto Panorama Logging Brandon Dixon (Apr 28)
- Re: [EXTERNAL] [SECURITY] Palo Alto Panorama Logging Bradley, Stephen (Apr 28)
- Re: [EXTERNAL] [SECURITY] Palo Alto Panorama Logging Brandon Dixon (Apr 28)
- Re: Palo Alto Panorama Logging Bradley, Stephen (Apr 27)