All other tradenames are the property of their respective owners. WatchGuard and the WatchGuard logo are registered trademarks or trademarks of WatchGuard Technologies in the United States and/or other countries. In the Sentinel Web Console, select Real-time Views > Events From Devices.Right-click WatchGuard-XTM:Syslog:Map OutPut (universal) and select Open Raw Data Tap.Select Sentinel > Sentinel Server > Syslog Connector.Select Collection > Overview to display events.You must install Java 8 for the Sentinel Web Console interface. In this example we enabled the time stamp and the serial number of the device. From the Log Format drop-down list, select Syslog. In the Port text box, type the port configured in Sentinel to receive syslog sourced messages.By uploading the jiql python controller (jiql.py) to Google App Engine (GAE), the jiql.py acts as a gateway between the jiql database engine and Googles BigTable (GBT). In our example, that IP address is 10.0.1.80. Java programmers need not be excluded, as jiql provides a way to at least utilize Googles BigTable. In the IP Address text box, type the Sentinel Enterprise IP address.Select the Send log messages to the syslog server at this IP address check box.The WatchGuard Firewalls plug-in is listed in the Collectors tab and in Event Source Palette.Ĭonfigure Firebox to Send Syslog Messages to Sentinel Server Click Next to complete the plug-in import.The Event Source Management Center appears. Select Event Source Management > Live View.Confirm that the Syslog Servers are on, the Syslog Server UDP port is available, and that the port number is 1514 (default setting).Select Collection > Event Source Servers.Log in to Sentinel Web Console interface (.Sentinel Plugin of WatchGuard Firewalls.To complete this integration, you must have: Sentinel Plugin of WatchGuard Firewall version 2011.1r1.NetIQ Sentinel Enterprise version 8.0.0.0.Firebox device installed with Fireware version 11.12.4.The hardware and software used to complete the steps outlined in this document include: This diagram shows the test topology for this integration. This document describes how to configure a WatchGuard Firebox or WatchGuard XTM to send log data to Sentinel® Enterprise and monitor events with Sentinel Enterprise. NetIQ Sentinel Enterprise Integration Guide
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |