Configure Syslog for VMware ESXi via vMA
Simple VMware bourne shell script to update ESXi hosts in vCenter to configure centralized syslog configuration.
Fortigate to Sumo Logic How-To
I received a question via Twitter today on how to configure the Fortigate firewall to send data into Sumo Logic.
Sumo Logic + Fortigate + Web Classification (update!)
Updated query replacing an empty category with UNRATED for a more useful display.
Sumo Logic + Fortigate + Web Classification
Website classification can be used for content filtering. This post has Sumo Logic searches from Fortigate logs to look at utilization by category as well as an example of a scheduled search to create a daily report, perhaps of just the adult content categories.
Fortigate – how to turn on web classification
Categorize web traffic flowing through a Fortigate firewall for later analysis using tools like Sumo Logic (shown in a later post).
Sumo Logic – example json’ery
Creating a configuration strategy for your Sumo Logic collector requires you to decide on whether you are going to use the web interface to control your collector or use a JSON configuration file.
Sumo Logic + Fortigate = My Dashboard
My dashboard – I took the Cisco ASA application from Sumo Logic and converted it into a dashboard that is built from the logging of a Fortigate firewall.
Sumo Logic + Fortigate + IPS Results
An additional panel that provides a representation of IPS triggered rules.
Sumo Logic? Why not ELK?
What you trade for in using Sumo Logic (simplicity, no-maintenance, available everywhere) you pay for in time and complexity when you use ELK for your log management activities.