Forum Discussion
Solved
Palo Alto Data Connector - "pattern not match"
Hello, I was hoping someone can help me with what appears to be incorrect Regex syntax in a configuration file. I'm trying to connect our Palo Alto logs to Sentinel and i've followed all of the i...
did you complete all the steps here? https://docs.microsoft.com/en-us/azure/sentinel/connect-paloalto#step-2-forward-palo-alto-networks-logs-to-the-syslog-agent
This
Oct 24 15:55:45 1,2019/10/24 15:55:45,013201006249,TRAFFIC,start,2049,2019/10/24 15:55:45
does not look like CEF format. in the PAN guides, it shows you to add CEF....blah in the formatting
did you complete all the steps here? https://docs.microsoft.com/en-us/azure/sentinel/connect-paloalto#step-2-forward-palo-alto-networks-logs-to-the-syslog-agent
This
Oct 24 15:55:45 1,2019/10/24 15:55:45,013201006249,TRAFFIC,start,2049,2019/10/24 15:55:45
does not look like CEF format. in the PAN guides, it shows you to add CEF....blah in the formatting
Thank you! That was an oversight on my part - got it working.
Cheers!
Cheers!