palo alto app
the palo alto app is not making use of the regular data files, can you help me to configure the data source?
View ArticlePalo Alto App configuration procedure
Hi, Please, could anybody explain the configuration steps for Palo Alto App?The installation is like the rest of the apps, but the initial customization is not explained anywhere, and I think it´s very...
View Articlemap serial to a name
I see some reference to host lookup with a dns-like function, but can I also automatically map the PA device serial number to a more friendly name?
View ArticleNo Data in Palo Alto App
I can see data being collected from my Palo Alto Devices (4 of them), but when I switch over to the Palo Alto App there is no data. Tried adding this into 2 locations:connection_host = IP Address...
View ArticleSplunk for Palo Alto Networks App transforms
I was wondering if someone could help me properly tag my Palo Alto eventsthey come in like the following but don't match the transform listed in the default: Jan 18 07:11:24 pan.network.local 07:...
View ArticlePalo Alto App
Are there any install documentation for this app? We are looking to get this running on our splunk server. Thanks Mike
View ArticlePalo Alto App
I installed Version 1.2.0 of the App and I really like it. The release date of this version was June 2011. Will there be new releases in the future ?I am on PAN OS 4.1.3 and I see some cosmetic...
View ArticlePalo Alto App after upgrade to 4.3.1
Just did an upgrade this morning to the main Splunk app to version 4.3.1 build 119532, and ever since the Palo Alto app isn't functioning. I check inputs.conf, it was left alone by the upgrade and is...
View Articleconfiguring data for splunk palo alto
Theres no data shown in the app.Do I configure the inputs.conf at /opt/splunk/etc/apps/SplunkforPaloAltoNetworks/local or /opt/splunk/etc/system/local ?I'm currently taking in the logs already and...
View ArticleCreating custom alert using external lookup table and Palo Alto Data
Hello, I am using the Splunk for Palo Alto App in order to send threat logs from our Palo Alto Devices. I was interested in making a custom alert in Splunk that would email the user that is generating...
View ArticleHaving issues updating Palo Alto Networks app for Splunk
Hi, I'm trying to update the Palo Alto App for Splunk but seems like it does not work: # ./splunk install app /home/balbano/SplunkforPaloAltoNetworks.zip -update 1 Splunk username: $user Password: An...
View ArticleQuestion on Data Inputs for Splunk for Palo Alto
I recently installed Splunk (4.3.4) and the Palo Alto app (2.3) and have run into an issue I can't seem to find a solution to. The PAN is forwarding traffic over to the Splunk server just fine. If I...
View ArticleUsing Palo Alto with syslog server funneling to splunk
Good afternoon, We are currently sending all of our Palo Alto syslogs to a syslog server that collects multiple machines syslogs and forwards them via a universal forwarder to our splunk instance. We...
View ArticleTrying to configure Splunk app for Palo Alto
Trying to configure Splunk app for Palo Alto and I seem to not be able to get it to work. I have my pan devices sending syslog data to splunk but I wanted to use the palo alto app but cannot get it to...
View ArticleQuestion On Splunk for Palo Alto Networks App
I have installed the Palo Alto Networks App and it appears to be working well with one exception, it still lists the number of PANs monitored as 0 even though it is pulling logs for 2 PANs. Everything...
View ArticleSplunk for Palo Alto (PAN software version)
Is the Splunk for Palo Alto app working with the 5.0 software version?
View ArticleInstalling Palo Alto App
I am attempting to install the Palo Alto App on Splunk, but every time I extract the files into the App folder, Splunk will refuse to restart. Is there something I'm missing?
View ArticleTraffic Dashboard displays no Data
We have the latest version of Splunk for PaloAlto (upgraded a week or two ago) on a Linux system. We are are trying to repair a lot of our dashboards, which have never worked. Originally Splunk was...
View ArticleNo Data with Version 3.0 of Palo App and Version 5.0.2 of Splunk
Hi ,I installed the palo alto app on a fresh splunk. followed the instructions in the readme and saw Events coming from the PA firewall. But PAN Overview didn't show any counter or the Google...
View ArticleQuestion about Palo Alto Network
Dear Splunkers, I have installed Splunk for Palo Alto Network app, Do you have a manual how to install. Should I have to configure syslog on Palo Alto Device?Regards,Jose Rivera
View Article