Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 40 subscribers
  • Views 2533 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG log to Syslog Parser files

Enz0h

Hello everyone, 

I need some help about the send the firewall logs to a syslog server. Currently noted that the logs sended by Sophos XG on the syslog are stored in a single file named "SFW.LOG", this is a bit unproductive because it not parsed by module or features, (IPS log, Fw log, email log, VPN-SSL log, etc).

 

 

 

I configured some profiles to send the logs to the syslog server from sophos. 5 profiles with different logs to send, but it not works and it's stored in a single file as mentioned:

 

 

I've disabled the options because when it's enabled the single log file increase too much (in 10 min log increase about 3 GB.... )

 

Any ideas how can resolve this?.....

 

Best regards!



This thread was automatically locked due to age.
Unfiltered HTML