Back to All Integrations
Before you begin
Determine the Blumira sensor you will use as a syslog server to collect log data. On the sensor detail screen, under Host Details, copy the IP address of your Blumira sensor to use when configuring WatchGuard Firebox.
Configuring Syslog and an Output Destination
To configure WatchGuard Firebox to send log data to Blumira Sensor:
- Navigate to System > Logging.
- Click the Syslog Server tab.
- Select the Send log messages to these syslog servers check box.
- Click Add.
The Syslog Server dialog box appears. - In the IP Address field, type the server IP address of the Blumira Sensor.
- In the Port field, keep the default 514.
- From the Log Format drop-down list, select Syslog
- Click OK.
- (Optional) In the Description text box, type a description for the server.
- To include the date and time that the event occurs on your Firebox in the log message details, select the The time stamp check box.
- Do not check the box to include the device serial number
- In the Syslog Settings section, for each type of log message, select a syslog facility from the drop-down list.
- For high-priority syslog messages, such as alarms, select Local0.
- To assign priorities for other types of log messages (lower numbers have greater priority), select Local1 – Local7.
- To not send details for a message type, select NONE.
- To restore the default settings, click Restore Defaults.
- Click Save.
For vendor documentation, please click here.