SecHard

21.2. Syslog Logs

Owned by seda peker
Last updated: Oct 09, 2023
1 min read

SECHARD collects Syslogs from Network devices in real time. There are 2 ways to route the Syslogs of network devices in SECHARD.

. By running the SecHard Syslog Server Enable Recipe in the Enable / Disable section on the Monitoring - Syslog page within the device, the Syslogs of the relevant device are brought to the Syslog page.

. With Multiple Configuration, it can be done in a single process and quickly on all network devices.

SECHARD can create an Alarm in incoming Syslogs while collecting Syslogs.

If it is desired not to receive Syslogs from the relevant device, it is sufficient to run the SecHard Syslog Server Disable Recipe.

Syslogs can be directed to the SIEM Server.

The Syslogs page in the Left Menu displays the Syslogs of all devices in Real Time. There are filters as Server Host, Search Severity and Search Message.

Date: Shows the syslog arrival date.

Time: Shows the syslog arrival time

Host: Shows the IP Address of the server sending Syslog.

Facility: Shows the Syslog Facility level

Severity: Shows the Syslog Severity level.

Protocol: Shows the Syslog Protocol.

Message: Shows the Syslog message.

 

SecHard