What configuration should be done on sophos and graylog to get logs from sophos

adiya_v · November 15, 2023, 11:58am

Arie · November 15, 2023, 3:30pm

You could setup a syslog receiver on graylog and in graylog you can setup syslog to send messages to your graylog server.

Kind Greetings,

Arie

adiya_v · November 16, 2023, 1:14am

I did’t get this, can’t we create a syslog tcp input in graylog?

Arie · November 16, 2023, 7:52am

You can do thaat in System > Inputs:

adiya_v · November 16, 2023, 10:09am

for sophos what should be the input?

ramindia · November 16, 2023, 11:04pm

You can try syslog UDP and see if that works for your needs

adiya_v · November 17, 2023, 1:07am

then what should be the configuration in sophos?

ramindia · November 18, 2023, 11:08pm

check their documentation

adiya_v · November 24, 2023, 6:49am

sophos send udp or tcp traffic?

system · December 8, 2023, 6:49am

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Graylog and Sophos XG Graylog Central (peer support)	4	156	March 30, 2024
Graylog and Sophos logs Graylog Central (peer support)	2	3007	March 30, 2018
Collecting syslogs from SOPHOS UTM How Are We Doing? Suggestion Box sidecar , winlogbeat	2	2329	April 30, 2018
Connection refused on any Port except 9000, 9200, 9300 Graylog Central (peer support)	4	2161	October 23, 2018
RSYSLOG UDP works but not SYSLOG TCP Graylog Central (peer support)	9	11574	October 6, 2017