cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Configure syslog from two different sources

zposz365
Copper Contributor

‎Jun 16 2021 08:03 AM

‎Jun 16 2021 08:03 AM

Configure syslog from two different sources

Hello,

 

I currently have CheckPoint Firewall logs coming to my Azure Linux server in CEF format and those are getting sent to Sentinel without issue. I am currently trying to get Cisco Meraki syslog to send to Azure Sentinel as well using the same server. Can I send both of these logs to port 514 on my Azure server running the oms agent? If so can someone help me get these logs flowing to Sentinel. If not can someone please guide me on the configuration files I would need to update? Thanks.

1,327 Views
0 Likes
1 Reply
Reply
1 Reply
PrashTechTalk

‎Jun 17 2021 04:47 AM

‎Jun 17 2021 04:47 AM

Re: Configure syslog from two different sources

Both logs can be sent on poet 514. Did you go to though the Azure Sentinel built-in connector for Cisco Meraki which is still in preview and its documentation?
though this is for reporting the link below should get some info on your port related question.
https://documentation.meraki.com/General_Administration/Monitoring_and_Reporting/Meraki_Device_Repor...
0 Likes
Reply