Help
FortiSIEM Discussions
Waloo5
New Contributor III

Created on ‎05-21-2024 05:06 AM

Integration Checkpoint in FortiSIEM

Hi,

Please can you help to integrate checkpoint firewall to my FortiSIEM.

I have logs in my siem but it's unknown_EventType .

How can I parse thé logs?

Amir
Amir
1335
0 Kudos
2 Solutions
cdurkin_FTNT
Staff
Staff
In response to Waloo5

Created on ‎05-21-2024 06:39 AM

Thank you.

 

So I believe the issue here is that we require syslog in CEF format.

 

The above sample is not CEF.

 

https://docs.fortinet.com/document/fortisiem/7.1.6/external-systems-configuration-guide/335430/check...

View solution in original post

1237
0 Kudos
Waloo5
New Contributor III
In response to cdurkin_FTNT

Created on ‎05-22-2024 03:53 AM

Hi,

I have an update of the issue

The error we made is not installing Database after configuration change in checkpoint.

Thank you @cdurkin_FTNT for your help.

Amir

View solution in original post

Amir
1158
0 Kudos
10 REPLIES 10
Waloo5
New Contributor III
In response to cdurkin_FTNT

Created on ‎05-22-2024 03:53 AM

Hi,

I have an update of the issue

The error we made is not installing Database after configuration change in checkpoint.

Thank you @cdurkin_FTNT for your help.

Amir
Amir
1159
0 Kudos
Announcements

Welcome to your new Fortinet Community!

You'll find your previous forum posts under "Forums"

Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.