Logrhythm SIEM integration

Hello,

I am trying to send FortiWeb WAF 2000E logs to Logrhythm SIEM. However, on v6.0.2, i only see SIEM compatibility to ArcSight and Qradar servers.

Any suggestions on connecting my WAF appliances to other SIEMs besides the out-of-box options?

thanks.

New Member

Hi,

there are only 3 siem format available on fortiweb, two that you re mentianing and azure format.

Try to use syslog policy. you have there cvs option too.

Logrhythm should be able to parse these logs.

best

AB

Sign up