How to receive logs from Forcepoint Sidewinder in Security Management Center
Receiving logs from Forcepoint Sidewinder firewalls in Forcepoint NGFW Security Management Center (SMC) allows you to view data from Sidewinder firewalls using the same log browsing tools as Forcepointâ„¢ Next Generation Firewall (Forcepoint NGFW) engines.
Requirements
You must use versions of the software that meet these requirements.
Configuration overview
Configuring the SMC to receive logs from Sidewinder as third-party data consists of these high-level steps.
Syslog packets and what they contain
Understanding the syslog format enables you to more easily configure how Sidewinder logs are parsed.
Predefined elements for Sidewinder log reception
The .zip file contains several predefined elements for Sidewinder log reception.
Import elements for Sidewinder log reception
Import the .zip file that contains the predefined elements for Sidewinder log reception.
Create a Host element to represent the Sidewinder firewall
The Host element represents the Sidewinder firewall that sends syslog data to the SMC and specifies the Logging Profile that is used for the Sidewinder logs.