Splunk Cloud Platform

Help with splunk Cloud with palo alto firewall configuration

raje1
Engager

Hi,

I have installed a app of palo alto firewall in my splunk cloud. an someone please help me how an i connect splunk and palo alto firewall with each other. what are the steps. I am confused.
which permission do i need to do this configuration.
In splunk cloud documentation, a lots of material is for the splunk enterprise not for splunk cloud.

thanks!

Labels (1)
Tags (2)
0 Karma
1 Solution

richgalloway
SplunkTrust
SplunkTrust

Palo Alto can't send directly to Splunk Cloud. Direct your PAN logs to a Splunk forwarder (perhaps on a syslog server) that sends the data to Splunk Cloud.

---
If this reply helps you, Karma would be appreciated.

View solution in original post

0 Karma

richgalloway
SplunkTrust
SplunkTrust

Palo Alto can't send directly to Splunk Cloud. Direct your PAN logs to a Splunk forwarder (perhaps on a syslog server) that sends the data to Splunk Cloud.

---
If this reply helps you, Karma would be appreciated.
0 Karma

raje1
Engager

Can you give me instructions how to direct PAN logs to splunk forwarder. I am new in splunk.

0 Karma

dkroen17
Engager

Check Panorama documentation and create a syslog destination.  You'll need a distinct syslog server.  Use Rsyslog or syslog-NG.  Install a universal forwarder on the same machine that forwards the collected panorama logs to your Splunk syslog installation.  Good Luck!

0 Karma

richgalloway
SplunkTrust
SplunkTrust

That's not a Splunk question. Consult the instructions for your PAN device to learn how to direct the logs to an external location.

---
If this reply helps you, Karma would be appreciated.
0 Karma
Get Updates on the Splunk Community!

Extending Observability Content to Splunk Cloud

Watch Now!   In this Extending Observability Content to Splunk Cloud Tech Talk, you'll see how to leverage ...

More Control Over Your Monitoring Costs with Archived Metrics!

What if there was a way you could keep all the metrics data you need while saving on storage costs?This is now ...

New in Observability Cloud - Explicit Bucket Histograms

Splunk introduces native support for histograms as a metric data type within Observability Cloud with Explicit ...