View Cloud NGFW Logs and Activity in Panorama
Table of Contents
Expand all | Collapse all
-
- About Cloud NGFW for AWS
- Getting Started from the AWS Marketplace
- Register Your Cloud NGFW Tenant with a Palo Alto Networks Support Account
- Cloud NGFW for AWS Pricing
- Cloud NGFW Credit Distribution and Management
- Link Your PAYG Account with Cloud NGFW Credits
- Cloud NGFW for AWS Free Trial
- Cloud NGFW for AWS Limits and Quotas
- Subscribe to Cloud NGFW for AWS
- Locate Your Cloud NGFW for AWS Serial Number
- Cross-Account Role CFT Permissions for Cloud NGFW
- Invite Users to Cloud NGFW for AWS
- Manage Cloud NGFW for AWS Users
- Deploy Cloud NGFW for AWS with the AWS Firewall Manager
- Enable Programmatic Access
- Terraform Support for Cloud NGFW AWS
- Provision Cloud NGFW Resources to your AWS CFT
- Configure Automated Account Onboarding
- Usage Explorer
- Create a Support Case
-
-
- Prepare for Panorama Integration
- Link the Cloud NGFW to Palo Alto Networks Management
- Unlink the Cloud NGFW from Palo Alto Networks Management
- Associate a Linked Panorama to the Cloud NGFW Resource
- Use Panorama for Cloud NGFW Policy Management
- View Cloud NGFW Logs and Activity in Panorama
- View Cloud NGFW Logs in Strata Logging Service
- Tag Based Policies
- Enterprise Data Loss Prevention (E-DLP) Integration with Cloud NGFW for AWS
-
- Strata Cloud Manager Policy Management
View Cloud NGFW Logs and Activity in Panorama
View logs and activity in Panorama.
View Cloud NGFW Logs in Panorama
When you Cloud NGFW resources are integrated with Panorama and Strata
Logging Service, logs and activity are captured and displayed in Panorama on the
Monitoring and Application Command Center (ACC) tabs. Panorama collects logs
generated by the Cloud NGFW and displays them on the
Monitor
tab. You can
select from the Traffic, Threat, URL Filtering and Decryption logs and filter
those by ID or name. See Cloud NGFW logging documentation for
descriptions of the log fields.- Log in to Panorama.
- SelectMonitor.
- From theDevice Groupdrop-down, select theCloud Device Groupto view activity.
- You can use a Panorama filter to view the log of an individual Cloud Device Group. Locate theDevice Name. Click the+icon in the upper right portion of the Panorama interface to add a new filter. Enter the name for the filter, then clickSave. Click theLoad Filtericon. Select the newly created filter to display the logs for the individual Cloud Device Group.
- From theLogsmenu on the left side on the Panorama console, you can choose a specific type of log to view.
View Cloud NGFW Activity in the ACC
The ACC is an analytical tool that provides actionable intelligence about the
activity within your network. The ACC uses the Cloud NGFW logs to graphically
depict traffic trends on your network. The graphical representation allows you
to interact with the data and visualize the relationships between events on the
network including network usage patterns, traffic patterns, and suspicious
activity and anomalies.
In Panorama, you can filter ACC content based on Cloud Device Group. To learn how
to filter and view specific information about activity on your Cloud NGFW
resources, see the ACC documentation for PAN-OS.
- Log in to Panorama.
- SelectACC.
- From theDevice Groupdrop-down, select theCloud Device Groupto view activity.
- You can use a Panorama filter to view the log of an individual Cloud Device Group. Locate theDevice Name. Click the+icon in the upper right portion of the Panorama interface to add a new filter. Enter the name for the filter, then clickSave. Click theLoad Filtericon. Select the newly created filter to display the logs for the individual Cloud Device Group.