Untangle

Version: Untangle

Untangle, a network software and appliance company, provides the most complete multi-function firewall and Internet management application suite available today.

Netsurion Open XDR is an enterprise-class platform that seamlessly combines SIEM, Log Management, File Integrity Monitoring, Machine Analytics and so forth.

Netsurion Data Source Integration for Untangle allows you to monitor the following components: –

  • Spam emails and Threat detection.
  • Application control, Settings changes, WAN failover and Web filter.
  • Login success and Login failure.

Once Untangle is configured to deliver events to Netsurion Open XDR Manager; alerts, dashboards and reports can be configured into Netsurion Open XDR.

The following are the key Data Source Integration available in Netsurion Open XDR.

Alerts

Type Name Description
Security Untangle – Spam emails This alert will be generated when a spam email is blocked.
Security Untangle – Threat detection This alert will be generated when a threat is detected by Untangle firewall.
Compliance Untangle – Login failure This alert will be generated when the user login failure is attempted.

Reports

Type Name Description
Security Untangle – Threat detection This report gives the information about all the threats that are detected by Untangle firewall.
Security Untangle – Spam emails This report gives the information about all the spam emails which are blocked or allowed.
Operations Untangle – Application control This report gives information about all the applications which are blocked or allowed.
Operations Untangle – Settings changes This report gives information about device settings changes.
Operations Untangle – WAN failover This report gives information about all the successful and failed WAN connections.
Operations Untangle – Web filter This report gives information about all the URL filtering that is done.
Compliance Untangle – Login success This report gives information about successful user logins.
Compliance Untangle – Login failure This report gives information about user login failures.

Documentation

The configuration details are consistent with Netsurion Open XDR 8.x and later and Untangle.

Download Integration Guide and How-to Guide for configuration instructions and more information.