Log data can provide tremendous insights into the activity and condition of many devices, applications and environments. However you must leverage the right tools to extract such value.

The Log Integrations for our sýnesis™ solutions are responsible for parsing, formatting and enriching raw logs, to extract the maximum information possible from your raw data.

When combined with the dashboards and analytics capabilites of sýnesis™ you will have a true turnkey solution that delivers immediate actionable insights for your organization.

The Apache HTTP Server (“httpd”) was launched in 1995 and it has been the most popular web server on the Internet since April 1996.

  • Syslog

Barracuda’s Cloud Generation Firewalls redefine the role of the Firewall from a perimeter security solution to a distributed network optimization solution that scales across any number of locations and applications, connects on-premises and cloud infrastructures, and helps organizations transform their business.

  • Syslog

BlackRidge Transport Access Control (TAC), using patented First Packet Authentication™, provides a new level of cyber defense for network and cloud resources. TAC operates pre-session, in real-time, before other security defenses engage.

  • Syslog
  • Syslog (LEEF)

BlueCat is the leader in Enterprise DNS, with a software-centric approach to solutions that enables the centralization and data management of DNS, the automation of DNS and leverages DNS data for significantly increased value.

  • Syslog

Check Point provides organizations of all sizes with the latest data and network security protection in an integrated next generation firewall platform, reducing complexity and lowering the total cost of ownership. Whether you need next-generation security for your data center, enterprise, small business or home office, Check Point has a solution for you.

  • Syslog

Block more threats and quickly mitigate those that do breach your defenses with the industry’s first threat-focused NGFW.

Cisco IOS® Software is the world’s leading network infrastructure software, delivering a seamless integration of technology innovation, business-critical services, and hardware platform support.

  • Syslog
  • Syslog

NetScaler AppFirewall is a best-of-breed web application firewall (WAF) that protects web applications and sites from both known and unknown attacks, including all application-layer and zero-day threats.

  • Syslog (CEF)

ISC BIND is by far the most widely used DNS software on the Internet, providing a robust and stable platform on top of which organizations can build distributed computing systems with the knowledge that those systems are fully compliant with published DNS standards.

ISC DHCP implements the Dynamic Host Configuration Protocol for connection to an IP network. It offers a complete solution for implementing DHCP servers, relay agents, and clients for small local networks to large enterprises.

  • Syslog
  • Syslog

The dns-logger uses existing operating system packet capture features to obtain a real-time stream of DNS query request and response messages, both UDP and TCP.

  • Syslog

dnsmasq provides network infrastructure for DNS, DHCP, router advertisement and network boot. It is designed to be lightweight and have a small footprint, suitable for resource constrained routers and firewalls.

  • Syslog

Know what’s going on across your applications by tapping into data traveling over the wire. Packetbeat is a lightweight network packet analyzer that sends data to Logstash, Redis, Kafka or Elasticsearch.

  • Packetbeat

The BIG-IP Application Security Manager is a comprehensive web application firewall (WAF) that protects apps and data from known and unknown threats, defends against bots that bypass standard protections, and virtually patches app vulnerabilities.

  • Syslog (CEF)

Forcepoint Next Generation Firewall (NGFW) connects and protects people and the data they use throughout the enterprise network – all with the greatest efficiency, availability and security. 

  • Syslog (CEF)
  • Syslog (LEEF)

FortiGate enterprise firewalls provide high performance, consolidated advanced security and granular visibility for broad protection across the entire digital attack surface.

  • Syslog

hostapd (host access point daemon) is a user space daemon which enables a network interface card to act as a WiFi access point and authentication server. It is commonly used by APs based on Linux, such as Engenius and Ubiquiti.

  • Syslog

Infoblox Actionable Network Intelligence controls and secures your network from the core – One unified platform including DNS, DHCP, and IPAM (DDI).

  • Syslog

Iptables is an extremely flexible command-line firewall utility built for Linux operating systems. It uses policy chains to allow or block traffic. 

  • Syslog

Juniper SRX Services Gateways provide advanced, next-generation defense against known and unknown threats, with a comprehensive suite of layered security services both on-premises and in the cloud.

Junos OS is the single operating system that powers Juniper’s broad portfolio of physical and virtual networking and security products.

The MX-series is a portfolio of SDN-ready routing platforms that provide the industry-leading system capacity, density, and performance that enterprises, service providers, and cloud operators need to thrive in our always-on, hyper-connected digital world.

  • Syslog
  • Syslog
  • Syslog

Lastline Enterprise protects your email, web, network, or cloud traffic from malicious content engineered to evade your existing security controls.

  • Syslog (CEF)

NGINX is a free, open-source, high-performance HTTP server and reverse proxy, as well as an IMAP/POP3 proxy server. NGINX is known for its high performance, stability, rich feature set, simple configuration, and low resource consumption.

  • Syslog

ospfd is an implementation of the Open Shortest Path First Protocol. It is a network routing software suite which allows ordinary general purpose computers to be used as routers exchanging routes with other computer systems speaking the OSPF protocol. It is used in many Linux-based routing platforms, including VyOS and Ubiquiti.

  • Syslog

Palo Alto next-generation firewalls secure your business with a prevention-focused architecture and integrated innovations that are easy to deploy and use.

  • Syslog

Snort’s open source network-based intrusion detection system (IDS) has the ability to perform real-time traffic analysis and packet logging on Internet Protocol (IP) networks.

  • Alert Logs

The SSH protocol uses encryption to secure the connection between a client and a server. All user authentication, commands, output, and file transfers are encrypted to protect against attacks in the network.

  • Syslog

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. It reduces bandwidth and improves response times by caching and reusing frequently-requested web pages.

  • Syslog

Suricata is an open source network threat detection engine capable of real time intrusion detection (IDS), inline intrusion prevention (IPS), network security monitoring (NSM) and offline pcap processing.

  • EVE (JSON)

Tripwire is a free software security and data integrity tool for monitoring and alerting on specific file change(s) on a range of systems.

  • Syslog

EdgeRouters combine carrier-class reliability with enterprise-level features in a compact and affordable unit. EdgeRouters can easily be configured for routing, security, and management features required to efficiently run your network. 

  • Syslog

VyOS is an open source network operating system that can be installed on physical hardware or a virtual machine on your own server, or a cloud platform.

  • Syslog

VyOS is an open source network operating system that can be installed on physical hardware or a virtual machine on your own server, or a cloud platform.

  • Winlogbeat (enhanced)