Tuesday, April 24, 2018

A look at Forcepoint NGFW log forward types

The Forcepoint NGFW  has the means to forward  logs to syslog-service using  a host of  various means. The logServer properties > log forward  is how one would go about enabling the forwarding of logs

 You  can a filter and define a host of value like  src/dst address of  traffic type that you want to forward. This is great for  Security  outfits that wants certain traffic types for specific service and not all traffic.

You have a host of data outputs CEF CSV XML etc.. Here's XML and  CSV

I will post more about this NGFW  vendor in the near future and will provide a very simple list of differences between the Fortigate and Forcepoint NGFW


NSE ( network security expert) and Route/Switching Engineer
kfelix  -----a----t---- socpuppets ---dot---com
     ^      ^
=(  @  @ )=
        /  \

No comments:

Post a Comment