Firewall Integration Manual

Palo Alto Networks Log Export Guide

Follow these step-by-step instructions to export outbound connection logs from your Palo Alto Networks appliances to run a local Shadow AI discovery audit.

Export Procedure

  1. Log in to your Palo Alto firewall management dashboard.
  2. Navigate to the Monitor tab in the main header bar.
  3. Select Logs > Traffic on the left-side settings view.
  4. Apply a filter to fetch outgoing web traffic (e.g. ( zone.src eq "Trust" ) and ( zone.dst eq "Untrust" )).
  5. Click the Export to CSV button in the top right control panel.
  6. Confirm the downloaded CSV matches our expected columns (Time, Source IP, Destination Domain, Bytes Sent).

Required CSV Format

Our client-side parser reads logs mapped to these values. Column headers can be customized in the audit panel:

timestamp, source_ip, department (optional), destination_domain, bytes_sent

Need a baseline schema template to test? Download our pre-configured sample dataset matching standard Palo Alto Networks logs structure.

Ready to Scan your Palo Alto Networks Logs?

Import your CSV file directly. The audit processing runs in the browser, meaning your logs are parsed locally in a sandbox. Zero telemetry is sent to any server.

Upload CSV Audit File