Focus

Next-Generation Firewall

Custom Log/Event Format

Table of Contents

Filter

Expand All | Collapse All

Next-Generation Firewall Docs

Getting Started
Administration
Networking
Quick Start
Reference
Incidents & Alerts
Release Notes
Select a Document
- PAN-OS 12.1
- PAN-OS 11.2
- PAN-OS 11.1
- PAN-OS 11.0 (EoL)
- PAN-OS 10.2
- PAN-OS 10.1
- PAN-OS 10.0 (EoL)
- PAN-OS 9.1 (EoL)
- PAN-OS 9.0 (EoL)
- PAN-OS 8.1 (EoL)
Help
Select a Document
- PAN-OS 12.1
- PAN-OS 11.2
- PAN-OS 11.1
- PAN-OS 10.2
- PAN-OS 10.1

Syslog Severity

Escape Sequences

Custom Log/Event Format

Where Can I Use This?	What Do I Need?
NGFW	For Strata Cloud Manager managed NGFWs: Strata Cloud Manager Pro

To facilitate the integration with external log parsing systems, the firewall allows you to customize the log format; it also allows you to add custom Key: Value attribute pairs. Custom message formats can be configured under:

(PAN-OS & Panorama)DeviceServer ProfilesSyslogSyslog Server ProfileCustom Log Format.
(Strata Cloud Manager)
ConfigurationNGFW and Prisma AccessObjectsSyslog and Add Syslog to create a new Syslog server profile or select an existing Syslog server profile.
When editing the Syslog server profile, select Custom Log Format to customize the log format forwarded to the syslog server.

To achieve ArcSight Common Event Format (CEF) compliant log formatting, refer to the CEF Configuration Guide.

Syslog Severity

Escape Sequences

Next-Generation Firewall Docs

Custom Log/Event Format

Next-Generation Firewall Docs

Custom Log/Event Format

Activation and Onboarding

Next-Generation Firewalls

SASE

Cloud-Delivered Security Services

Network Security

Endpoints

Visibility & Monitoring

FedRAMP

Hardware Reference

Hardware Quick Start Guides

Virtual ION Deployment

3rd Party Integrations

Best Practices

Experts Corner