Newly added Firewalls not sending logs to the Log Collectors

• New Firewalls added to the Panorama.
• Firewalls do not show any logs being sent to the Log Collectors.

  • > show logging-status

• Preference list is correctly populated on the Firewall

  • > show log-collector preference-list

• Firewalls are connected to the Panorama and Log collectors

  • > show netstat all yes numeric-hosts yes numeric-ports yes | match 3978

• The new Firewalls have been added in the Device Log Forwarding section of the Collector Group Config on the Panorama and committed.
• logrcvr.log on the Firewall shows the following :-

  • 2025-05-09 04:41:59.236 +0000 Timeout:100 triggered for lc_conn_id:lr-XX.XX.XX.XX-def dst_registered:false
    2025-05-09 04:41:59.236 +0000 Re-sending lcs-register for lc_conn_id:lr-XX.XX.XX.XX-def
    2025-05-09 04:41:59.237 +0000 Error:  pan_rlog_agent_dst_register(pan_rlog_agent.c:661): failed to fetch the customer ID
    2025-05-09 04:41:59.317 +0000 Error:  pan_rlog_agent_dst_register_res(pan_rlog_agent.c:494): Error getting the 'hostname' attribute from the response

• Palo Alto Networks Firewalls and Panorama
• Log Collectors
• Log forwarding from the Firewalls to the Log Collectors

The issue is seen because a Collector Group Push has not been performed after adding the new Firewalls to the Device Log Forwarding section of the Collector Group Config on the Panorama.

Perform a Collector Group Push from the Panorama to the Log Collectors