What is the character limit in CEF format if sending logs from the firewall to the Syslog server?

What is the character limit in CEF format if sending logs from the firewall to the Syslog server?

4088
Created On 03/31/23 00:19 AM - Last Modified 04/18/24 02:20 AM


Question


What is the character limit in CEF format if sending logs from the firewall to the Syslog server?

Environment


  • Palo Alto Firewalls
  • PAN-OS 10.0 or above
  • Syslog
  • Common Event Format (CEF)

Answer


  1. The  maximum supported characters  in the Custom Log Format tab is 2048.
  2. Starting with release 10.0, the log format documented for log types (Traffic, Threat, URL, Decryption) exceeds the maximum supported 2048 characters in the Custom Log Format tab.
  3. Select the CEF keys and values for the required attributes to bring it under the limit.
  4. The characters limit is documented in the  CEF configuration document.
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000g19WCAQ&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail