Firewall not forwarding logs to Panorama or syslog server

Firewall not forwarding logs to Panorama or syslog server

6277
Created On 11/22/22 17:02 PM - Last Modified 12/03/24 09:44 AM


Symptom


  • Log "could not initialize FSM, log forwarding will not work!" seen under logrcvr.log file:
less mp-log logrcvr.log


2022-11-07 13:35:42.634 +0800 Error: pan_init_fsm_2(pan_log_handler.c:9421): Failed to add filter ((severity eq medium) or (severity eq high) or (severity eq critical)) to query_grp_mgr<<<<<
pan_log_config_phase1(pan_log_receiver.c:15028): could not initialize FSM, log forwarding will not work<<<<<<

 

Environment


  • PAN OS
  • Firewall
  • Panorama
  • Log Collector

Cause


Filters added in wrong format under GUI-->Device --> Log Settings

 

Resolution


Fix the incorrect filter. Configure the filter with the help of Filter Builder  in the log settings to avoid this issue.
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000kFJBCA2&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language