PanoramaQueryTrafficLogs

Deprecated

Use "PAN-OS Query Logs For Indicators" playbook instead

DEPRECATED. Use "PAN-OS Query Logs For Indicators" playbook instead. Queries traffic logs in a PAN-OS Panorama or Firewall device.

Dependencies

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks

  • GenericPolling

Integrations

This playbook does not use any integrations.

Scripts

This playbook does not use any scripts.

Commands

  • panorama-get-traffic-logs
  • panorama-check-traffic-logs-status
  • panorama-query-traffic-logs

Playbook Inputs


NameDescriptionDefault ValueRequired
number_of_logsThe number of logs to retrieve. The maximum is 5,000.100Optional
directionSpecify the log display order. "Forward" means the oldest is first, "Backward" means the newest is first. The default is "Backward".backwardOptional
querySpecify the match criteria for the logs. This is similar to the query provided in the web interface under the Monitor tab when viewing the logs.-Optional
sourceThe source address for the query.-Optional
destinationThe destination address for the query.-Optional
receive_timeThe start time for the query. For example, YYYY/MM/DD HH:MM:SS.-Optional
applicationThe application for the query.-Optional
to_portThe destination port for the query.-Optional
actionThe action for the query.allowOptional

Playbook Outputs


There are no outputs for this playbook.

Playbook Image


PanoramaQueryTrafficLogs