Syslog configuration on Ubiquiti These instructions assume: The date, time and time zone are correctly set on the device. You have administration access to the UniFi controller web interface. Configure syslog: Log in to the UniFi Controller’s web interface. Click Settings (the gear icon) in the bottom left corner. Under the Site heading, navigate to […]
Configure Sentinel to send logs to SGBox Open the SentinelOne Admin Console. Configure SentinelOne to send logs to your Syslog server. Select your site. In the left side menu, click the slider icon [⊶] to open the Settings menu. Open the INTEGRATIONS tab, and fill in the details: ( 3.1 ): Under Types, select SYSLOG […]
ForcePoint To send logs to SGBox: Toggle the Enable SIEM logging switch to ON. Enter the IP address or hostname and communication Port for your SGbox server. Select a Transport protocol (TCP or UDP). Configure which logs to send by selecting one or more Threat levels. By default, malicious and suspicious incident logs are […]
6.0.5 A new version of SGBox that improve features and performance has been released. Various fixes SGBOX > SCM > Applications > SGBox Updates
6.0.4 A new version of SGBox that improve features and performance has been released. Added geolocation for IPv6 addresses Updated geolocation DB to latest version Windows agent – Tailfile/Tailfolder command now supports multiline logs Windows agent – Tailfile/Tailfolder command now supports logs with incomplete timestamps (e.g. hours-minutes-seconds only) Various fixes SGBOX > SCM > Applications […]
Introduction Imagine effortlessly transforming raw data into insightful reports, whether they are straightforward summaries or intricate analyses.SGBox empowers users with a vast array of predefined templates, streamlining the report generation process and saving valuable time. VERSATILE OUTPUT One of the standout features of the SGBox report system is its output capabilities: reports are generated in […]
6.0.3 A new version of SGBox that improve features and performance has been released. It’s now possible create custom reports templates for advanced report generation Tags can now be added to Classes, Patterns, Mappings, Queries, Rules, Lists triggers count reset button added Revisited logging policy for checks, in order to create a history on SM […]
6.0.2 A new version of SGBox that improve features and performance has been released. Reports on LM Events/Log queries added Custom report generation allows to select multiple reports Custom report templates clonation added Daily report with events statistics has been updated to the new system Full day(s)-week(s)-month(s) logic added in report time range selection Multiple […]
6.0.1 A new version of SGBox that improve satability has been released. Various fixes SGBOX > SCM > Applications > SGBox Updates
Syslog configuration on Zyxel Firewalls Configure Zyxel Firewalls Configure Zyxel device to forward syslog data to SGBox Log into the Zyxel Web Interface. Navigate to Configuration > Log & Report > Log Settings. Choose a Remote Server. Click Active. Choose Log Format as VRPT/Syslog. Enter the IP address of the SGBox in Server Address field. […]