Configure Email Alerts
You can configure email alerts for System, Config, HIP Match, Correlation, Threat, WildFire Submission, and Traffic logs.
- Create an Email server profile.You can use separate profiles to send email notifications for each log type to a different server. To increase availability, define multiple servers (up to four) in a single profile.
- Select.DeviceServer Profiles
- ClickAddand then enter aNamefor the profile.
- If the firewall has more than one virtual system (vsys), select theLocation(vsys orShared) where this profile is available.
- For each Simple Mail Transport Protocol (SMTP) server (email server), clickAddand define the following information:
- Name—Name to identify the SMTP server (1-31 characters). This field is just a label and doesn’t have to be the hostname of an existing email server.
- Email Display Name—The name to show in the From field of the email.
- From—The email address from which the firewall sends emails.
- To—The email address to which the firewall sends emails.
- Additional Recipient—If you want to send emails to a second account, enter the address here. You can add only one additional recipient. For multiple recipients, add the email address of a distribution list.
- Email Gateway—The IP address or hostname of the SMTP gateway to use for sending emails.
- (Optional) Select theCustom Log Formattab and customize the format of the email messages. For details on how to create custom formats for the various log types, refer to the Common Event Format Configuration Guide.
- ClickOKto save the Email server profile.
- Configure email alerts for Traffic, Threat, and WildFire Submission logs.
- Select, clickObjectsLog ForwardingAdd, and enter aNameto identify the profile.
- For each log type and each severity level or WildFire verdict, select the Email server profile and clickOK.
- Configure email alerts for System, Config, HIP Match, and Correlation logs.
- Select.DeviceLog Settings
- For System and Correlation logs, click each Severity level, select theOK.
- For Config and HIP Match logs, edit the section, select theOK.
Set Up Alerts for Malware
Set Up Alerts for Malware You can configure a Palo Alto Networks firewall to send an alert when WildFire identifies a malicious file or email ...
Device > Server Profiles > Email
Device > Server Profiles > Email Device > Server Profiles > Email Panorama > Server Profiles > Email To forward logs as email notifications, define ...
Device > Server Profiles > Syslog
Device > Server Profiles > Syslog Device > Server Profiles > Syslog Panorama > Server Profiles > Syslog To forward System, Config, Traffic, Threat, HIP ...
Configure Log Forwarding
Configure Log Forwarding To use Panorama or Use External Services for Monitoring the firewall, you must configure the firewall to forward its logs. Before forwarding ...
Configure Syslog Monitoring
Configure Syslog Monitoring To Use Syslog for Monitoring a Palo Alto Networks firewall, create a Syslog server profile and assign it to the log settings ...
Configure Log Forwarding from Panorama to External Destinations
Configure Log Forwarding from Panorama to External Destinations Panorama enables you to forward logs to external servers, including syslog, email, and SNMP trap servers. Forwarding ...
Use Panorama for Visibility
Use Panorama for Visibility In addition to its central deployment and firewall configuration features, Panorama also allows you to monitor and report on all traffic ...
Schedule Reports for Email Delivery
Schedule Reports for Email Delivery Reports can be scheduled for daily delivery or delivered weekly on a specified day. Scheduled reports are executed starting at ...
Monitor > PDF Reports > Email Scheduler
Monitor > PDF Reports > Email Scheduler Use the Email scheduler to schedule reports for delivery by email. Before adding a schedule, you must define ...