SPL2 templates for Edge Processor and Ingest Processor for Palo Alto Networks¶
Templates for Palo Alto networks are designed to help you reduce the size of Palo Alto Network logs, generate metrics from logs, and extract fields and classification of Palo Alto logs.
Templates are available for the Edge Processor and Ingest Processor. See the following documentation for more inforamtion:
| Template name | Version | Use case | Availability |
|---|---|---|---|
| Palo Alto Network logs: Reduce log size | 0.2.1 | Reduce the size of Palo Alto Network logs by removing unnecessary fields. Then, extract recommended event fields. | Edge Processor and Ingest Processor |
| Palo Alto Network traffic logs: Generate metrics from logs | - | Generate metrics with dimensions from Palo Alto Network traffic logs, and then route the metrics and the original logs to two different destinations. | Ingest Processor |
| Palo Alto Networks PAN-OS syslog data: Extract fields and classification of Palo Alto logs | - | Take Palo Alto Networks syslog message data and set the sourcetypes and indexes based on the message text. This pipeline also automatically removes the header information from messages, which reduces the message size by 10%. | Edge Processor and Ingest Processor |
Release Notes for the templates are available in the documentation.