How to export traffic logs from Panorama using FTP/SCP for a specific Device Group

How to export traffic logs from Panorama using FTP/SCP for a specific Device Group

25507
Created On 03/22/19 08:29 AM - Last Modified 03/22/19 14:12 PM


Objective


This article explains how to export traffic logs from Panorama using FTP/SCP for a specific Device Group.

Environment


These instructions are applicable for Panorama running on PAN-OS 7.1, 8.0, 8.1 and 9.0.

Procedure


If the Panorama is managing multiple firewalls and has got multiple Device Groups, you can run the command below from Panorama CLI.
  
ftp export log traffic max-log-count 1048576 query "device-group eq DEVICE-GROUP-NAME" start-time equal 2019/03/22@00:00:00 end-time equal 2019/03/22@14:00:00 to anonymous@10.129.132.13

This command will export the logs only for the Device Group that you are querying, and it will be based on the start and end time.

Panorama CLI
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000boOSCAY&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language