You can monitor the service's overall health and gain deep insights into traffic and operations using various Cloud NGFW logs and metrics.

To monitor the overall health of the Cloud NGFW service, check the Palo Alto Networks status page. This page provides region-specific status information and allows you to subscribe to service notifications, ensuring you are aware of any ongoing service events. For more information, see Palo Alto Networks Status page.

Cloud NGFW publishes a variety of logs to help you monitor traffic and threats for analysis and compliance. These traffic and threat logs provide detailed information about network sessions passing through your Cloud NGFW resource. Analyze permitted and denied traffic, inspect source/destination IP addresses, URLs, port numbers, and protocols. This data is crucial for understanding traffic patterns, identifying potential security threats, and troubleshooting connectivity issues. These can be streamed to other AWS services for analysis and alarming.

Cloud NGFW publishes a variety of metrics to help you monitor resource health, performance, and traffic usage. These resources assess the overall health of your Cloud NGFW resources, identify performance bottlenecks, and detect anomalies.

Activity logs track user and API activity within your Cloud NGFW tenant. These logs help you audit operations related to firewall resources, such as creating, updating, or deleting rules and policies. Reviewing these logs helps maintain a historical record of configuration changes and ensures compliance with security requirements.