For more details, please see ourCookie Policy.

Virtual Router/ Firewall/ VPN

Regular Visitor
Posts: 1
Registered: ‎07-13-2015

Has anyone ever managed to successfully parse Vyatta syslogs with QRadar?

[ Edited ]

Devices are discovered as Linux IPtables firewalls.  Every event shows up as an "unknown firewall event."  The problem seems to be that the default syslog configuration does not output logs explicitly stating "accept" "drop" "reject" or "forward." 

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.