SIEM

Expand all | Collapse all

Palo Alto Firewall

  • 1.  Palo Alto Firewall

    Posted Sep 23, 2019 11:11 PM
    Hi People,

    I need to know which log format will support withFortiSIEM on Palo

    Is it CEF or LEF or do we need to configure custom format


    Regards,
    Kalana

    ------------------------------
    kalana
    ------------------------------


  • 2.  RE: Palo Alto Firewall

     
    Posted Sep 24, 2019 07:59 AM
    It would be CEF. There is more information on the CEF mapping located at https://help.fortinet.com/fsiem/5-2-5/Online-Help/HTML5_Help/Appendix_FSM-CEF-mapping.htm?Highlight=CEF.

    For the FortiSIEM and PAN configuration, it is located at https://help.fortinet.com/fsiem/5-2-5_ESCG_HTML/FortiSIEM/User-guide/Palo-Alto-Firewall-Configuration_88454093.html#Configur