Release Details
|
Fields |
Details |
|---|---|
|
Name |
Genua Firewall |
|
Version |
5.0.0 |
|
Supported On |
LogPoint v6.6.0 and later |
|
Release Date |
2021-01-18 |
| Document Date |
2021-01-18 |
| Download | Genua_Firewall_5.0.0.pak |
| SHA256 |
49cfe1b147a415c9322cb800fc220fa7bbd2597372e32dadcac58e33d75b39af |
Package Details
The application consist of the following components:
- Normalization Package
- LP_Genua Firewall
General Description
The Genua Firewall application normalizes Genugate events and enables you to analyze Genugate data. You can further customize the searches to perform an in-depth analysis.
Installation
Follow these steps to install the Genua Firewall v5.0.0 application:
- Download the Genua Firewall package from the Download section above.
- Add the required Genua Firewall server as a device in LogPoint.
- Create a collection policy with the Syslog collector and an appropriate processing policy.
- Assign the policy to the device.
Supported Device
The device supported by the Genua Firewall with LogPoint in this configuration is:
- Genua Firewalls (Genugate)
Log Format
Genua Firewall
Expected Log Format
Key = Value with a space as delimiter
Log Sample
<54>Feb 14 10:09:17 xxxxx udprelay[3817]: I4102 1550135357 disconnect baddr=xxx.xxx.x.xx bport=12345 caddr=xxx.xxx.x.xx cin=123 cout=456 cport=45678 duration=8.77 laddr=xxx.xxx.x.xx lport=1 paddr=xxx.xxx.x.xx pport=11 proto=12 relay_name=xxxxx rnum=789 saddr=xxx.xxx.x.xxx sin=314 sout=314 sport=53 status=OK
To export data to LogPoint, use the Syslog collector on port 514 of the LogPoint server.
Support
If you have any queries or require assistance, please feel free to contact our support team:
Email: servicedesk@logpoint.com
Phone: +45 7060 6100
Best regards,
Comments
Article is closed for comments.