Applies To: SonicWALL UTM SonicOS 5.8 and later.
SonicWALL's approach to UTM Unified Threat Management (UTM) is the security approach for small- to medium-sized businesses (SMBs). It uses for networking, security, threat prevention, and management to deliver predictable performance.
EventTracker gathers and examines acquired logs to identify malicious traffic, fatal threats, configuration changes, VPN activity and user behaviour. It generates reports for changes in firewall configuration, user management and its activities, detection of intrusion, virus and spyware. It alerts when user tries to access blocked URL and login fails.
EventTracker Knowledge Pack for SonicWALL UTM firewall allows you to monitor following:-
Once SonicWALL UTM is configured to deliver events to EventTracker Manager; alerts, dashboards and reports can be configured into EventTracker.
Some of the Knowledge Packs available in EventTracker are listed below. For more information, please refer Integration Guide.
The configuration details in this guide are consistent with EventTracker Enterprise version 7.X and later,SonicWALL UTM SonicOS 5.8 and later.
To configure Sonicwall UTM to send logs to EventTracker, refer to the How-to Guide.
For more information please refer to the Integration guide