Sophos Firewall

Discussions Forward ModSecurity Logs

Sophos Firewall requires membership for participation - click to join

Thread Info

State Not Answered
Locked Locked
Replies 0 replies
Subscribers 26 subscribers
Views 1946 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Forward ModSecurity Logs

Wahyu Nuryanto over 7 years ago

Hi Guys,

I am new to Sophos XG Firewall and currently i am working to integrate Sophos XG with OSSIM for security event monitoring (SIEM).

I am able to forward all logs to the OSSIM but there is one more logs that i can not send to the SIEM, yes it is ModSecurity related logs. The logs file itself located at /log/reverseproxy.log.

Any idea/suggestion how to forward this log file into OSSIM/SIEM so that i can monitor it.

Thanks

Best Regards,

Wahyu N

This thread was automatically locked due to age.