Forwarding the logs to the siem server by configuring the UDP Port
From Secure Web Gateway
Revision as of 17:10, 27 December 2017 by en>Samidha12
Basically this configuration is used for monitoring real time access logs,extended logs and native logs.
How to configure ?
1.Go to SafeSquid Interface
2.Click on Support at right top corner
3.Click on Startup Params menu.
EXTENDED_UDP_IP : Syslog server IP or Siem IP
NATIVE_UDP_IP : Syslog server IP or Siem IP
EXTENDED_UDP_PORT : UDP Port (514)
NATIVE_UDP_PORT : UDP Port (514)