About GabrielKaelin

GabrielKaelin · 11-12-2021

GabrielKaelin · 11-12-2021

GabrielKaelin · 11-12-2021

Hi IsuruI don't find any BarracudaWebFilterParser on my FortiSIEM 6.3.2 instance: df5a8fb3673248a7b132e79860b3ff15.pngYet, the log message you posted originally passes the system's BarracudaWAFParser:76f67fb8565a46acae1c6b0dc56b4f78.pngThe only issue...

GabrielKaelin · 11-12-2021

Hi Isuruwhy are you not using the system parser that does the job well? \s+\s+<_eventID:gPatInt>\s+\s*$]]>combineMsgId("Barracuda-Sys-", $_eventID)Barracuda-Sys-Generic To answer your question, yet, you'd have to applycollectAndSetAttrByPos only to t...

GabrielKaelin · 05-28-2020

Hi IsuruFortiSIEM does not contain a parser for the syslog format as of now, only CEF is supported. I don't know what the difference between ArcSight CEF and Splunk CEF is.Be aware that Kaspersky CEF log export requires an advanced license from Kaspe...

User Statistics

User Activity

RE: FortiSIEM - Barracuda Web Filter Parser

RE: FortiSIEM - Barracuda Web Filter Parser

RE: FortiSIEM - Barracuda Web Filter Parser

RE: FortiSIEM - Barracuda Web Filter Parser

RE: Kaspersky Security Center Integration

FortiSIEM

KCS