Astaro Security Gateway
Version: Astaro Security Gateway v7 and later.
The Astaro Security Gateway is a flexible, full gateway security appliance that can be deployed and configured to fit almost any environment. This product is available as a full hardware appliance, software installation or virtual appliance. The Security Gateway offers firewall and intrusion prevention protection along with application control, web content filtering, gateway anti-virus, email content filtering and anti-spam.
Astaro Security Gateway syslog feature allows you to forward log messages to Netsurion Open XDR. Once the ASG has been configured to send syslog to Netsurion Open XDR Manager alerts ,reports and dashboard can be configured.
Netsurion data source integration allows you to monitor the following events generated by Astaro Security Gateway
- Monitoring Antivirus related events, such as virus detection, email rejected and so forth.
- Monitoring Authentication events.
- Motoring Firewall and content filtering events.
- Monitoring Clustering and High Availability events.
- Monitoring Intrusion Detection System (IDS) events.
- Monitoring VPN events.
Once logs are received into Netsurion Open XDR, Alerts, reports and dashboard can be created in Netsurion Open XDR.
The following are the key Data Source Integration available in Netsurion Open XDR.
Alerts
| Type | Name | Description |
|---|---|---|
| Security | Astaro security gateways – Virus detected | This alert is generated when virus detected. |
| Security | Astaro security gateways – Intrusion detection | This alert is generated when an intrusion detected. |
| Security | Astaro security gateways – Cluster link failed | This alerts is generated when cluster link failed. |
Reports
| Type | Name | Description |
|---|---|---|
| Security | Astaro security gateways – Virus detected | This category based report provides information about the detected viruses. |
| Security | Astaro security gateways – Email rejected | This category based report provides information about emails which are rejected by antivirus. |
| Security | Astaro security gateways – Web request blocked | This category based report provides information about blocked web traffic requests. |
| Security | Astaro security gateways – Packet rejected | This category based report provides information about packet rejected by firewall. |
| Security | Astaro security gateways – Master dead | This category based report provides information related to master unit dead status. |
| Security | Astaro security gateways – Portscan detection | This category based report provides information related to port scan detections. |
| Security | Astaro security gateways – SYN Flood detected | This category based report provides information of SYN flood attacks detection. |
Documentation
The configuration details are consistent with Netsurion Open XDR 7.x and later, and Astaro Security gateway 7 and later.
Download Integration Guide for configuration instructions and more information.