Refer to the exhibit.
An organization has Palo Alto Networks NGFWs that send logs to remote monitoring and security management platforms. The network team has reported excessive traffic on the corporate WAN.
How could the Palo Alto Networks NGFW administrator reduce WAN traffic while maintaining support for all the existing monitoring/security platforms?
In the given scenario, the network team has reported excessive traffic on the corporate WAN due to the logs being sent from several remote firewalls to multiple monitoring and security management platforms. The best solution to reduce WAN traffic, while still supporting all existing platforms, is to centralize the log forwarding process. By forwarding logs from firewalls only to Panorama and then having Panorama forward logs to the other external services, you can significantly reduce the number of log streams traversing the WAN. This centralized approach minimizes the bandwidth consumption on the WAN link, as Panorama acts as an intermediate log aggregator and distributor. Additionally, it simplifies the log collection and forwarding architecture, leading to more efficient network resource usage and potentially improved overall system performance.
Valid Question tinyurl.com/2y4nowqa
Gratz man! What a coincidence that I was just passed from here too
A is the correct https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClKFCA0
Correct Answer: A Link: https://docs.paloaltonetworks.com/panorama/10-2/panorama-admin/panorama-overview/centralized-logging-and-reporting/log-forwarding-options PAN-OS: 10.2 Time of answer: May 30, 2022
Answer: A
A is correct
A, 100%, look at the 2nd picture https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClKFCA0
A is correct
the correct answer is A. forwarding from Panorama reduces the number of log streams and cut down extra negotiation traffic per stream etc.
It is A
After reading the KB, I vote for option A.
Firewall logs -> Panorama -> Monitoring system
Need to be A
A is correct
https://docs.paloaltonetworks.com/panorama/10-2/panorama-admin/panorama-overview/centralized-logging-and-reporting/log-forwarding-options
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClKFCA0 https://docs.paloaltonetworks.com/panorama/10-0/panorama-admin/panorama-overview/centralized-logging-and-reporting/log-forwarding-options.html
Answer A makes most sense to me.
Based on documentation correct answer is A: Forward logs from firewalls to Panorama and from Panorama to external services—This configuration is best for deployments in which the connections between firewalls and external services have insufficient bandwidth to sustain the logging rate, which is often the case when the connections are remote. This configuration improves firewall performance by offloading some processing to Panorama. https://docs.paloaltonetworks.com/panorama/10-2/panorama-admin/panorama-overview/centralized-logging-and-reporting/log-forwarding-options