The Palo Alto Networks Cortex Data Lake stores the context-rich enhanced network logs generated by our security products, including our next-generation firewalls, Prisma Access, and Cortex XDR. With Cortex Data Lake, you can collect ever-expanding volumes of data without needing to plan for local compute and storage, and it's ready to scale from the start. And most Cortex apps use the Cortex Data Lake to access, analyze, and report on your network data.

This cloud-based logging infrastructure is available in multiple regions. Review the Cortex Data Lake privacy datasheet for details on how network data is captured, processed, and stored.

Date Highlight
1 July 2020

For compliance with regional data privacy regulations, you can now select the UK or Singapore as a host region when you activate Cortex Data Lake.

15 June 2020 The quota manager now features a detailed breakdown of firewall log types and a simpler method of allocating remaining storage to help you more easily manage your Cortex Data Lake log storage.
21 May 2020 To ensure continued service, make sure to install content version 8274 or higher on your individually managed firewalls by 5/24/2020. Panorama-managed firewalls are not affected.
27 April 2020 The quota manager now has a new look to help you more easily manage your log storage. See the release notes for details.
30 May 2019 You no longer need Panorama to start sending logs to Cortex Data Lake! Enable your firewalls to securely connect to Cortex Data lake, and start logging to the cloud now.

Documentation

Cortex Data Lake Getting Started Guide


Everything you need to start sending logs to Cortex Data Lake.

Cortex Data Lake Release Notes


Learn about new features, and what we're working on to make Cortex Data Lake even better.

Palo Alto Networks Compatibility Matrix


Find compatibility information for Cortex Data Lake.