Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 38 subscribers
  • Views 2961 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG - Secure log transmission

Sophos User1909

Hi Team,

I want to send logs to a external syslog server hosted on Sumologic, to make sure that data is encrypted in transit I chose secure log transmission option but on the server end I can only see messages with question marks(?) and # and some other random values. Please look at sample messages below in screenshot :

 

My Firewall settings:

Facility : DAEMON

Severity level : Information

Syslog server settings:

Protocol : TCP/UDP (tried both the protocols one by one)

Port : 6514/514 (I tried both the ports one by one)

Destination IP : Public IP 

 

 

Although I am seeing the required logs when secure log transmission option is disabled. Am i missing anything from my end?



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi  

    Thank you for reaching out to the Community! 

    Could you please try to change the Facility to LOCAL4 or Local7 and let us know if that makes any difference? 

    Also, try to change the log Format to "Central Reporting Formate" and let us know the result. 

    Thanks, 

Reply
  • FormerMember
    0 FormerMember

    Hi  

    Thank you for reaching out to the Community! 

    Could you please try to change the Facility to LOCAL4 or Local7 and let us know if that makes any difference? 

    Also, try to change the log Format to "Central Reporting Formate" and let us know the result. 

    Thanks, 

Children
Unfiltered HTML