Version:

Configuring the Application

Adding LogPoint as a Device in Windows

  1. Go to the Flowalyzer application on your Windows machine.

  2. Enter 9001 in the UDP Port field.

  3. Enter LogPoint machine IP in the IP Address field.

  4. Click Apply.

_images/netflow.png

Flowalyzer Panel

Adding Windows as a Device in LogPoint

  1. Go to Settings >> Configuration >> Devices.

  2. Click Add.

  3. Enter a device Name.

  4. Enter the IP address(es) of the Windows server.

  5. Enter the Device Groups.

  6. Select an appropriate Log Collection Policy for the logs.

  7. Select a collector or a forwarder from the Distributed Collector.

Note

It is optional to select the Device Groups, the Log Collection Policy, and the Distributed Collector.

  1. Select a Time Zone.

Note

The timezone of the device must be the same as that of its log source.

  1. Configure the Risk Values for Confidentiality, Integrity, and Availability. These values are used to calculate the risk levels of the alerts generated from the device.

  2. Click Save.

_images/create_device.png

Create Device Panel

Configuring the NetFlow Collector for the Windows Application

  1. Click NetFlow Collector.

_images/available_collectorfetcher.png

Available Collectors Fetchers Panel

  1. Select a Processing Policy.

  2. Click Submit.

_images/netflowcollector.png

NetFlow Collector Panel

Helpful?

We are glad this guide helped.


Please don't include any personal information in your comment

Contact Support