防火墙不将日志转发到 Panorama 或syslog服务器

防火墙不将日志转发到 Panorama 或syslog服务器

7139
Created On 11/22/22 17:02 PM - Last Modified 12/27/24 10:44 AM


Symptom


  • 在 logrcvr.log 文件下看到日志“无法初始化 FSM,日志转发不起作用! ”:
less mp-log logrcvr.log


2022-11-07 13:35:42.634 +0800 Error: pan_init_fsm_2(pan_log_handler.c:9421): Failed to add filter ((severity eq medium) or (severity eq high) or (severity eq critical)) to query_grp_mgr<<<<<
pan_log_config_phase1(pan_log_receiver.c:15028): could not initialize FSM, log forwarding will not work<<<<<<

Environment


  • 泛操作系统
  • 防火墙
  • 全景
  • 日志收集器

Cause


GUI-->设备-->日志设置下以错误格式添加的过滤器

Resolution


修复不正确的过滤器。借助Filter Builder配置过滤器 在日志设置中以避免此问题。
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000kFJBCA2&lang=zh_CN&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language