 |
You are here: Docs>Sheriff Web>UserGuides>SheriffCSMDocumentation>DeploymentGuide>PluginManagement>ConfigureLogForwardingOnCommonlyUsedDataSources>WatchguardXCS (27 Jun 2022, SheriffCyberSecurity)Edit Attach
Up
Previous Next Sheriff CSMâ„¢ WatchGuard XCS When you configure WatchGuard XCS to send log data to Sheriff CSM, you can use the WatchGuard XCS plugin to translate raw log data into normalized events for analysis. The table below provides some basic information for the plugin: Plugin Information
Previous Next Sheriff CSMâ„¢ WatchGuard XCS When you configure WatchGuard XCS to send log data to Sheriff CSM, you can use the WatchGuard XCS plugin to translate raw log data into normalized events for analysis. The table below provides some basic information for the plugin: Plugin Information
| Device | Details |
|---|---|
| Vendor | WatchGuard |
| Device Type | Mail Server |
| Connection Type | Syslog |
| Data Source Name | Watchguard-xcs-mg |
| Data Source ID | 1900 |
Integrating WatchGuard XCS
Before you configure the WatchGuard XCS integration, you must have the IP Address of the Sheriff CSM Sensor (Deputy). To configure WatchGuard XCS to send log messages to Sheriff CSM- From the WatchGuard XCS web UI, select Configuration > Network > Interfaces.
-
In the Syslog Server field, enter the Sheriff CSM IP address.
- Click Apply.
Plugin Enablement
For plugin enablement information, see Enable Plugins.Additional Resources and Troubleshooting
http://www.watchguard.com/help/docs/xcs/10/en-us/xcs_v10_0_userguide.pdf For troubleshooting, refer to the vendor documentation: http://www.watchguard.com/help/docs/xcs/10/en-US/xcs/index.htmlEdit | Attach | Print version | History: r6 < r5 < r4 < r3 | Backlinks | View wiki text | Edit wiki text | More topic actions
Topic revision: r6 - 27 Jun 2022, SheriffCyberSecurity
Copyright 2020 Sheriff Cyber Security, LLC. All rights reserved.