Integration guide for Palo Alto
Palo Alto Networks® next-generation firewalls inspect all traffic (including applications, threats, and content), and tie that traffic to the user, regardless of location or device type. The user, application, and content—the elements that run your business—become integral components of your enterprise security policy. This allows you to align security with your business policies, as well as write rules that are easy to understand and maintain.
Installing Palo Alto
This integration requires a UTMStack agent to work properly. Please, make sure you have installed it before you continue.
This integration relies on Syslog. Logs received via Syslog are parsed and correlated by UTMStack automatically.
1. Configure your device to send logs to a UTMStack agent on ports:
- 7006 TCP
- 7006 UDP
2. Enable log collector.
To enable the log collector where you have the UTMStack agent installed, follow the instructions below based on your operating system and preferred protocol.
Execute command according to the selected platform