Palo Alto Network Firewall allows you to monitor and identify threats in your organization using Palo Alto Network Firewall data. LogPoint aggregates and normalizes logs from every Palo Alto Networks Firewall device so you can analyze the information through dashboards and security reports. Palo Alto Network Firewall dashboards provide visualization related to traffic, threat, user, content, system, and firewall configurations. Additionally, when LogPoint identifies traffic, threats, user, content, system, and firewall-related events with a potential risk to your environment, it triggers security alerts based on predetermined rules. The automated alerts enable you to detect possible issues early, and take corrective actions against them. You can customize dashboards and alerts to suit your needs and perform in-depth analysis with customized data and searches.
Palo Alto Network Firewall consists of the following components:
LP_PaloAlto: User Activities
LP_PaloAlto: File Activities
LP_PaloAlto: Firewall
LP_PaloAlto: Config Overview
LP_PaloAlto: General
LP_PaloAlto: Content Overview
LP_PaloAlto: Threats
LP_PaloAlto: Traffic
LP_PaloAlto: System Overview
LP_PaloAlto: Firewall
LP_PaloAlto: Config Overview
LP_PaloAlto: General
LP_PaloAlto: Content Overview
LP_PaloAlto: Threats
LP_PaloAlto: Traffic
LP_PaloAlto: System Overview
LP_PaloAltoNetworkFirewall
PaloAltoCEFCompiledNormalizer
PaloAltoNetworkFirewallCompiledNormalizer
LP_PaloAlto Cortex Data Lake
LP_Palo Alto Global Protect
Alert Packages
LP_PaloAlto Potential Risk Activity
LP_PaloAlto HTTP Request Block
LP_PaloAlto Bypass Content Filter
LP_PaloAlto Brute Force Attempts
LP_PaloAlto Session Drop
LP_PaloAlto Illegal Content Download
LP_PaloAlto Cortex Risk Events Unrestricted
LP_PaloAlto Multiple Failed Login
LP_PaloAlto Cortex Risk Events Terminated
LP_PaloAlto Brute Force on Block Override
LP_PaloAlto Potential C2 Connection
LP_PaloAlto Log Deletion
LP_PaloAlto Flooding Packet Drop
LP_PaloAlto Risk Events Allowed
LP_PaloAlto DNS SinkHole Activate