I have managed to integrate and configure the firewall in Sophos Central. I would like to know how can I fetch firewall logs using postman. My main goal is to integrate this feature into a SIEM application.
The following document explains the configuration steps you'll need to follow to send data to a Syslog server.- Add a syslog server
Essentially this is not possible from a Central perspective. The Logs in the Datalake are stored there and cannot be extracted.
But you can send Data from your firewalls directly to a SIEM.
Can you provide more details about how to send data from the firewall directly to the SIEM application?