Hello All,
Anyone try to built the device parser for watchguard XTM series ? Was trying hard, but realized that its only capture the logs that have been recognized. And still working hard to built this.
Appreciate if can share.
thanks.
Hello All,
Anyone try to built the device parser for watchguard XTM series ? Was trying hard, but realized that its only capture the logs that have been recognized. And still working hard to built this.
Appreciate if can share.
thanks.
How you will share the same? I can't share my email address here in the open text public-ally. Hope you can understand.
And also defines all the details of your firewall, like the firewall type, XTM model means, the version number, etc.
Hi deepanshu,
Understand that, I need to check first the logs so will not publicly share some privacy content.
thanks
Right.
but don't do any changes with the format of the logs and don't cut and those logs from the middle, because it will change the line of the log.
For the security you can do the changes in the IP Addresses, if you want.
Regards,
Deepanshu Sood.
Hi deepanshu,
I uploaded here,
Invincea Threat Data Server Event Source Configuration Guide
thanks in advance..
Can you kindly submit the raw logs of the same, I need to do the test on that.