Hi All,
Just looking for some help to convert NetFlow logs from an edge( SD-WAN device) to Syslog and send to the SIEM.
I am currently using nxlog enterprise trial but happy to explore other options.
Any help to achieve this
<Extension netflow> Module xm_netflow </Extension> <Extension json> Module xm_json </Extension> <Input udpin> Module im_udp Host hostip Port 2055 InputType netflow </Input> <Output out> Module om_file File "c:\\temp\\netflow.log" Exec to_json(); </Output> <Route nf> Path udpin => out </Route>
No comments:
Post a Comment