Cybersecurity Forum

This forum is for all security enthusiasts to discuss Fortinet's latest & evolving technologies and to connect & network with peers in the cybersecurity hemisphere. Share and learn on a broad range of topics like best practices, use cases, integrations and more. For support specific questions/resources, please visit the Support Forum or the Knowledge Base.

KalanaChandrasiri
New Contributor

Palo Alto Firewall

Hi People,

I need to know which log format will support withFortiSIEM on Palo Alto ?

Is it CEF or LEF or do we need to configure custom format there ?


Regards,
Kalana

------------------------------
kalana
------------------------------
1 Solution
rmock_FTNT
Staff
Staff
1 REPLY 1
rmock_FTNT
Staff
Staff

It would be CEF. There is more information on the CEF mapping located at https://help.fortinet.com/fsiem/5-2-5/Online-Help/HTML5_Help/Appendix_FSM-CEF-mapping.htm?Highlight=....

For the FortiSIEM and PAN configuration, it is located at https://help.fortinet.com/fsiem/5-2-5_ESCG_HTML/FortiSIEM/User-guide/Palo-Alto-Firewall-Configuratio...