![]() ![]() Has anyone in the community managed to do this? Any feedback would be greatly appreciated. I could not find where, on how (i.e., on what format) does NxFilter stores the logs we see in /logging,request.jsp One possible solution is to install an agent on the server (cloud SIEM provide those) to read the content of a file and send it to the HTTP collector of the SIEM. So those two articles are not applicable for us. In my efforts of exploring the documentation and the WebUI, I found those two articles:Ĭontrary to internally-hosted SIEMs (which often have a syslog collector), cloud SIEMs rely on HTTP collectors, and the preferable event format is JSON. This means that, in my environment and context, admins and security analysts would need to connect to the NxFilter WebUI to investigate events instead of being able to see them from the SIEM. While NxFilter is excellent, I've been struggling to find a way to send logs to a "cloud" (SaaS) SIEM. By aggregating logs from various sources, admins and security analysts can have a global view of events, as well as being able to detect production & security incidents. ![]() Having a SIEM in an enterprise environment enables centralized log management, real-time monitoring, and advanced analytics. ![]() More than 1.TL DR : How to send NxFilter DNS Filtering logs to a SaaS SIEM (Splunk Cloud, DataDog, SumoLogic, New Relic)? Context ![]() * Runs everywhere including Windows, Linux Easy install, easy setup, easy maintenance * Embedded webserver and embedded DB, built-in GUI You can monitor Internet usage in your network and block user request for websites with NxFilter. NxFilter is a DNS filtering software controlling user activity on Internet. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |