security architecture

Parsing Palo Alto syslogs with Logstash

Introduction Palo Alto Firewalls are capable of forwarding syslogs to a remote location. However, parsing is necessary before these logs can be properly ingested at data ingestion and storage endpoint such as Elasticsearch.