How to configure Palo Alto to send logs to SGBox Please follow the official guide, for your specific Palo Alto version, on how to send CEF formatted logs to SGBox through the syslog protocol: Configuration guides WARNING!!! Please be aware to not cat and paste log templates directly from the PDF, or the web page, […]
Download updated feed from internet This articles explain to configure open source feed to use as list in SGBox. Requirements: SGBox version 4.2.5 Feed Application must be scheduled. See this section to discover how to schedule an application. From SGBox go to SCM > Actions > Lists Select Feeds in the top right corner. Select […]
How to configure Syslog on MikroTik Log in to MikroTik using web interface. Click on System > Logging, then switch to Action tab. Select Remote and specify the SGBox IP and port 514. Go back on Rules tab and specify which type of log you want to send to SGBox.
How to export SGBox GPG Key This articles explain how to export the SGBox private and public keys in order to decipher your logs out of SGBox. Requirements: SGBox version 4.2.0 or later. Only the default Admin user can export the key. The supervisor password must be set in SCM > Advanced Options, Supervisor Password. […]
Introduction to be able to receive logs from Fortigate appliance, the syslog must be configured with key/value syslog (also “Default” or “RFC5424”). Exmple configuration NOTE: this is only an example configuration, the options may change due to different version or changed options. Connect to your fortinet system. Choose Log Forwarding and specify the SGBox IP. […]
Configure SGBox Restore Application This article explains how to configure SGBox App Restore in order to restore your Raw log data, Raw logs signatures, Database and Settings. Requirements: Share the backup data folder with SGBox using SMB, NFS, or SSH protocols. Go under SCM > Applications > BackupSelect the application to use and proceed with the […]
Schedule application execution Some applications need to be scheduled in order to be executed.This articles explain how to configure SGBox schedule job in order to execute them at specific time recursively. Requirements: SGBox version 4.2.0. Specific application must be installed. From SCM > Applications select SCHEDULE LIST. Then click on NEW SCHEDULATION Create the New […]
Configure SGBox Backup Application This articles explain how to configure SGBox APP in order to backup or extract your log out of SGBox. Remember that all extracted data are encrypted, you need your SGBox GPG private key in order to decrypt them. See this article to know how to export your key: http://www.sgbox.eu/knowledge-base/export-sgbox-gpg-key. Requirements: SGBox […]
Configure a collector as a probe in SGBox This section explains how to configure a collector as a probe in SGBox to monitor the status of the collector directly from the tenant where it is added. Requirements: A collector must be deployed and configured. Look this section to see how to configure it. Connect to […]
The Simple Network Management Protocol (SNMP) This section explain how to configure SNMP service on Windows systems in order to monitoring and collect detailed information about the server. Requirements: The SNMP service must be installed. If you want to check or install the SNMP service you can follow this steps: Clink on Windows > Administrative […]