linux – SGBox Next Generation SIEM & SOAR https://www.sgbox.eu Next Generation SIEM & SOAR Tue, 05 Nov 2024 11:36:24 +0000 en-US hourly 1 https://wordpress.org/?v=6.7.1 https://www.sgbox.eu/wp-content/uploads/2020/09/cropped-Logo-SGBox-Trasparente-NO-SCRITTA-150x150.webp linux – SGBox Next Generation SIEM & SOAR https://www.sgbox.eu 32 32 Configure SNMP Service on Linux https://www.sgbox.eu/en/knowledge-base/configure-snmp-service-on-linux/ Tue, 17 Dec 2019 10:49:45 +0000 http://10.253.1.91/?post_type=epkb_post_type_1&p=2776 The Simple Network Management Protocol (SNMP)

This section explain how to configure SNMP service on Linux systems in order to monitoring and collect detailed information about the server.

Requirements:

  • Check that SNMP service is installed.

The command to install SNMP changes depending on distribution; Debian, RedHat, Centos, Solaris, for this reason we recommend to search the Internet for the correct command to install the service.

Debian/Ubuntu:

apt-get -y install snmpd

RedHad/Centos/Fedora:

yum -y install net-snmp net-snmp-utils

Once the installation is complete, make a copy of your original file and proceed with the configuration.

vim /etc/snmp/snmpd.conf

Specify the listening interface of server for the snmp service.

snmpLinux1

Enter the community name and SGBox ip address.

snmpLinux2

Save changes and restart the SNMP service.

Debian/Ubuntu:

service snmpd restart

RedHad/Centos/Fedora:

service snmpd restart

]]>
Syslog configuration on Bitdefender GravityZone https://www.sgbox.eu/en/knowledge-base/syslog-configuration-on-bitdefender-gravityzone/ Fri, 28 Jun 2019 14:37:11 +0000 https://10.253.1.90/sgbox/EN/?post_type=epkb_post_type_1&p=1664 How to configurate Syslog on Bitdefender GravityZone

This guide provides instructions to configure Bitdefender GravityZone to forward Bitdefender GravityZone
logs via syslog. The configurations detailed in this guide are consistent with Bitdefender GravityZone (on-prem) v6.5 to 7.0.

Requirements:

  • Admin access to Bitdefender GravityZone (on-prem) console. If you have cloud console you need to follow this guide.

Note: Bitdefender GravityZone supports the syslog option from v6.50 to 7.0. 

Following are the steps to configure Bitdefender Gravityzone ( On-premises) to send logs to SGBox.

Log in to GravityZone Control center.
Click on Configuration > Miscellaneous.
Put the flag on Enable Syslog and write the IP of your SGBox.
Enter SGBox port (514) and select protocol UDP.

Syslog configuration on Bitdefender GravityZone

Click on configuration button ( the rowel ) in the top-right corner

Syslog configuration on Bitdefender GravityZone

Define the events you want send to SGBox

Syslog configuration on Bitdefender GravityZone

 

After data source appears in SGBox you need to install following package from SCM > Application > Pacakges:


Syslog configuration on Bitdefender GravityZone

 

 

 

]]>