Integration with Cisco Firewpower Estreamer
-
tcanthonyii
- Posts: 88
- Joined: Thu Jan 21, 2016 10:45 am
Integration with Cisco Firewpower Estreamer
Has anyone done this? Cisco has an app for splunk but I'm not finding any information for NLS. Is there any documentation or anyone who has done this?
Re: Integration with Cisco Firewpower Estreamer
I'm not familiar with the device. Is it capable of sending to a syslog server? That's the most common method of getting log into NLS.
Reading the doc(https://www.cisco.com/c/en/us/td/docs/s ... nGuide.pdf) the method of pulling logs is a bit more involved than what the usual inputs(https://www.elastic.co/guide/en/logstas ... ugins.html) will handle. However if there were a third party client that could pull the logs and save them to another machine or even the NLS machine, we could then forward(via nxlog, syslog, etc...) them to the NLS machine or use the file(https://www.elastic.co/guide/en/logstas ... -file.html) input to get them into NLS's database.
Reading the doc(https://www.cisco.com/c/en/us/td/docs/s ... nGuide.pdf) the method of pulling logs is a bit more involved than what the usual inputs(https://www.elastic.co/guide/en/logstas ... ugins.html) will handle. However if there were a third party client that could pull the logs and save them to another machine or even the NLS machine, we could then forward(via nxlog, syslog, etc...) them to the NLS machine or use the file(https://www.elastic.co/guide/en/logstas ... -file.html) input to get them into NLS's database.
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.