Forum Discussion
Log Forwarder with multiple log sources to Sentinel
Hello Community, In a Sentinel project we want to connect some OnPrem log sources to LogAnalytics / Sentinel. We have OnPrem a Linux VM that acts as a LogForwarder with Syslog-NG and the OMS Age...
Garfield-P What does the raw message sent by the device look like?
Does if have CEF=0 or CEF=1?
Cisco is notable to replace parts with ASA, FTD etcetera. Most likely the message does not match the regex