Palo Alto Networks App for Splunk leverages the data visibility provided by Palo Alto Networks next-generation firewalls and endpoint security with Splunk's extensive investigation and visualization capabilities to deliver an advanced security reporting and analysis tool.
We have integrated Pan sources with Splunk via syslog-ng. Until 01/11/24 the sourcetypes the parsing into sourcetypes pan:traffic, pan:threat, pan:system, pan:config was working fine. But, later all logs are found under pan_log.
We have integrated Pan sources with Splunk via syslog-ng. Until 01/11/24 the sourcetypes the parsing into sourcetypes pan:traffic, pan:threat, pan:system, pan:config was working fine. But, later all logs are found under pan_log.