Table of Contents:
This article covers how to create a remote log target and send the generated logs to Chronicle as syslog format.
Trend Micro Apex Central™ is a web-based console that provides centralized management for Trend Micro products and services at the gateway, mail server, file server, and corporate desktop levels.
Prerequisites
Admin Login credentials for the WatchGuard.
Configuration
Steps to create a Remote Log Target
- Select System > Logging.
- Click the Syslog Server tab.
- Select the Send log messages to these Syslog servers check box.
- Click Add.
- In the IP Address text box, type the IP address of the Syslog Server.
- In the Port text box, Type: 11674
- From the Log Format drop-down list, Select Syslog.
The details you can include in the log messages depend on the log format you select.
- Select The timestamp check box.
- Select The serial number of the device check box.
- In the Syslog Settings section, for each type of log message, select a Syslog facility from the drop-down list.
-
- - For High-Priority Syslog messages, such as Alarms, select Local0.
- - To assign priorities for other types of log messages (lower numbers have greater priority), select Local1 - Local7.
- - To not send details for a message type, select NONE.
4. Click OK.
Now the Logs will be generated to the Chronicle as SYSLOG format.
Comments
0 comments
Please sign in to leave a comment.