Powerful threat prediction, prevention, detection, and response along with compliance in a scalable, simple managed solution.
All-in-one networking solution that combines network connectivity, agility, security, and compliance in an affordable managed solution.
Accelerate business growth through our award-winning partner program.
Applies To: Cyberoam UTM CR500i,Version 9.5.4 and later.
Cyberroam firewall (NG and UTM) is a network security system that monitors and controls the incoming and outgoing network traffic based on predetermined security rules. It typically establishes a barrier between a trusted, secure internal network and another outside network, such as the Internet that is assumed not to be secured or trusted.
EventTracker supports Cyberoam UTM Log events. The EventTracker Enterprise monitors it and generates alert for user authentication failure, configuration changes, virus and spam detection, and reports for user management, admin operations, antivirus and antispam activity, firewall traffic activity and user activity. Its dashboard gives us the information about the top user usage, top application used, top source IP address usage, top destination IP address usage and top virus detected.
EventTracker Knowledge Pack for Cyberoam UTM allows you to monitor following:-
Once logs are received in to EventTracker, Alerts and Reports can be configured into EventTracker.
The following Knowledge Packs are available in EventTracker v7.x and later to support Cyberoam UTM firewall monitoring:
Alerts
Reports
Cyberoam UTM: Virus detected - This alert is generated when virus is detected.
The configuration details in this guide are consistent with EventTracker Enterprise version 7.X and later, Cyberoam UTM CR500i, Version 9.5.4 and later.
To configure Cyberoam UTM to send logs to EventTracker, refer the How to Guide.
For more information please refer the Integration guide