Sending logs to a Syslog server in SynaMan

In addition to extensive logging capabilities in SynaMan, you can send essential logs and alerts to any Security Information and Event Management (SIEM) server that supports syslog. This syslog server can be running on-premise or in the cloud.

Configuring Syslog Server in SynaMan

Use the following steps to integrate a Syslog server in SynaMan

• Log in as the administrator
• Click Configuration, and select the tab for Syslog
• Specify the values on the following page related to your Syslog server.

RFC 3164 vs 5424

Syslog servers are based on two RFCs

• 3164 - Original standard
• 5424 - Latest standards, which also support SSL

Both standards support UDP and TCP, but SSL is only supported for 5424. If your server supports it, you should use the newer standard.