Watchguard Firewall device parser
Anyone try to built the device parser for watchguard XTM series ? Was trying hard, but realized that its only capture the logs that have been recognized. And still working hard to built this.
Appreciate if can share.
- Community Thread
- Forum Thread
- RSA NetWitness
- RSA NetWitness Platform
How you will share the same? I can't share my email address here in the open text public-ally. Hope you can understand.
And also defines all the details of your firewall, like the firewall type, XTM model means, the version number, etc.
but don't do any changes with the format of the logs and don't cut and those logs from the middle, because it will change the line of the log.
For the security you can do the changes in the IP Addresses, if you want.