Skip to content

Add Palo Alto package #233

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 6, 2020
Merged

Add Palo Alto package #233

merged 1 commit into from
Aug 6, 2020

Conversation

@andrewstucki
Copy link

What does this PR do?

This adds the Palo Alto Networks PAN-OS filebeat module as a package

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all datasets collect metrics or logs.

Screenshots

Screen Shot 2020-08-05 at 3 22 43 PM

Screen Shot 2020-08-05 at 3 22 56 PM

Screen Shot 2020-08-05 at 3 23 03 PM

Screen Shot 2020-08-05 at 3 23 32 PM

Screen Shot 2020-08-05 at 3 23 41 PM

Screen Shot 2020-08-05 at 3 24 56 PM
@andrewstucki andrewstucki added enhancement New feature or request Team:Integrations Label for the Integrations team Team:SIEM (Deprecated) labels Aug 5, 2020
@elasticmachine
Copy link

Pinging @elastic/integrations (Team:Integrations)
@elasticmachine
Copy link

Pinging @elastic/siem (Team:SIEM)
@elasticmachine
Copy link

💚 Build Succeeded

Pipeline View Test View Changes Artifacts preview

Expand to view the summary

Build stats

  • Build Cause: [Pull request #233 opened]

  • Start Time: 2020-08-05T19:28:29.715+0000

  • Duration: 4 min 14 sec
andrewkroh
andrewkroh approved these changes Aug 6, 2020
View reviewed changes
Copy link
Member

@andrewkroh andrewkroh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM
packages/panw/kibana/search/290685e0-7569-11e9-976e-65a8f47cc4c1.json
"indexRefName": "kibanaSavedObjectMeta.searchSourceJSON.index",
"query": {
"language": "kuery",
"query": "data_stream.dataset: \"panw.panos\" and event.category: \"network_traffic\""
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍 I forgot to take advantage of data_stream.dataset in my Suricata dashboard.
Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

that gets translated automatically by the import now 😄 -- i'm sure we'll probably have to circle back and fine-tune a bunch of these packages before prime-time
@andrewstucki andrewstucki merged commit 2e96fa0 into elastic:master Aug 6, 2020
@andrewstucki andrewstucki deleted the palo-alto branch August 6, 2020 18:25
@andrewkroh andrewkroh added Integration:panw Palo Alto Next-Gen Firewall New Integration Issue or pull request for creating a new integration package. labels Aug 13, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

enhancement New feature or request Integration:panw Palo Alto Next-Gen Firewall New Integration Issue or pull request for creating a new integration package. Team:Integrations Label for the Integrations team Team:SIEM (Deprecated)

3 participants

@andrewstucki @elasticmachine @andrewkroh