Fortigate 5 IPS syslog flexagent

File uploaded by jring on Dec 3, 2013
Version 1Show Document
  • View in full screen mode

Hi,

 

since our firewall guys wanted to see IPS messages from fortigates and those weren't parsed by the syslog connector, we wrote a syslog flexagent. Put the attached file into $AGENT_HOME/user/agent/flexagent/syslog and restart the connector.

 

This has been tested with Fortigate 5 GA Patch 5.

 

Joachim

Outcomes