Cette page n'est pas encore disponible en français, sa traduction est en cours. Si vous avez des questions ou des retours sur notre projet de traduction actuel, n'hésitez pas à nous contacter.
SonicWall Firewall is a network security solution designed to protect organizations from a wide range of cyber threats. It offers advanced security features, high performance, and scalability, making it suitable for businesses of all sizes. SonicWall Firewall is known for its ability to provide real-time protection against emerging threats, while ensuring secure and efficient network traffic management.
This integration provides enrichment and visualization for all log types shared by SonicWall Firewall over syslog. Detailed insights into the logs received by syslog are visualized in out-of-the-box dashboards and detection rules.
Datadog expects all logs to be in UTC time zone by default. If the time zone of your SonicWall Firewall logs is not in UTC, specify the correct time zone in the SonicWall Firewall Datadog pipeline.
To change the time zone for the SonicWall Firewall pipeline:
Enter SonicWall Firewall in the Filter Pipelines search box.
Hover over the SonicWall Firewall pipeline and click clone. This creates an editable clone of the SonicWall Firewall pipeline.
Edit the Grok Parser using the below steps:
In the cloned pipeline, find the processor with the name Grok Parser: Parsing Sonicwall FireWall time. Hover over the pipelines and click Edit.
Under Define parsing rules:
Modify the rule and provide the TZ identifier of the time zone of your SonicWall Firewall server. For example, if your time zone is IST, replace ' z' with Asia/Calcutta.