Click here for the most updated version of this documentation.
Blumira’s modern cloud SIEM platform integrates with SonicWall Next-Generation Firewalls to detect cybersecurity threats and provide an automated or actionable response to remediate those threats.
When configured, the Blumira integration with SonicWall Next-Generation Firewall will stream security event logs to the Blumira service.
Learn more about enabling Blumira’s Dynamic Block Lists to block malicious source IP addresses and domains for automated threat response.
Get your free account with Blumira and secure your Microsoft 365 environment in minutes. No credit card required.
Determine the Blumira sensor you will use as a syslog server to collect log data. On the sensor detail screen, under Host Details, copy the IP address of your Blumira sensor to use when configuring SonicWall.
To begin forwarding logs to Blumira, follow these steps:
Note: If you are pushing syslogs to another source, you will need to prioritize the Blumira policy higher to push logs to Blumira.
An additional guide is available at Sonicwall.com.