Version:

Configuring Barracuda

Adding a Normalization Policy for Barracuda

  1. Go to Settings >> Configuration >> Normalization Policies.

  2. Click Add .

  3. Enter a Policy Name.

  4. Select the Compiled Normalizer for Barracuda.

  5. Click Submit.

_images/norm1bar.png

Selecting Compiled Normalizer

Adding Barracuda as a Device in LogPoint

  1. Go to Settings >> Configuration >> Devices.

  2. Click Add.

Create Device Panel

Adding Barracuda as a Device

  1. Enter a device Name.

  2. Enter the IP address(es) of the Barracuda server.

  3. Select the Device Groups.

  4. Select an appropriate Log Collection Policy for the logs.

  5. Enter a collector or a forwarder in the Distributed Collector.

Note

It is optional to select the Device Groups, the Log Collection Policy, and the Distributed Collector.

  1. Select a Time Zone.

Note

The timezone of the device must be the same as its log source.

  1. Configure the Risk Values for Confidentiality, Integrity, and Availability used to calculate the risk levels of the alerts generated from the device.

  2. Click Submit.

Configuring the Syslog Collector for Barracuda

  1. Click Syslog Collector on the Available Collectors Fetchers.

Syslog Collector Panel

Available Collectors Fetchers

  1. Select the Syslog Parser.

  2. Select the Processing Policy which contains the previously added normalization policy.

  3. Select the Charset.

  4. In PROXY SERVER, select None.

  5. Click Submit.

Available Collectors Fetchers Panel

Configuring the Syslog Collector for Barracuda

Helpful?

We are glad this guide helped.


Please don't include any personal information in your comment

Contact Support