Based on PAN-OS 11.0 documentation, the forwarding configuration for specific log types in Device > Log Settings involves selecting log types for system-level logs, which include HIP Match and Configuration logs.
Explanation for Each Option
A. Threat
Threat logs record detected security threats such as malware, viruses, and vulnerabilities.
Forwarding of Threat logs is not configured in Device > Log Settings. Instead, Threat logs are forwarded using Log Forwarding Profiles applied to Security Policies.
Verdict: Incorrect.
B. HIP Match
HIP Match logs capture information about endpoint compliance reported by GlobalProtect clients.
These logs can be configured for forwarding in Device > Log Settings for monitoring and compliance purposes.
Verdict: Correct.
C. Traffic
Traffic logs provide details about allowed or denied network traffic.
Forwarding of Traffic logs is configured using Log Forwarding Profiles applied to Security Policies, not in Device > Log Settings.
Verdict: Incorrect.
D. Configuration
Configuration logs track administrative changes to the firewall, such as updates to policies, settings, and objects.
These logs can be forwarded from Device > Log Settings for auditing purposes.
Verdict: Correct.
Correct Answer
B. HIP MatchD. Configuration
Key Points from PAN-OS 11.0 Documentation
Device > Log Settings is specifically for system-related logs like HIP Match and Configuration.
Logs like Threat and Traffic are handled through Log Forwarding Profiles applied to Security or NAT policies.
Documentation Reference
For further details, refer to the official Palo Alto Networks PAN-OS 11.0 Admin Guide under Device > Log Settings. This section outlines which log types can be forwarded from this menu.
