Supported Data & Log Sources IT Compliance & Event Log Management Software for SIEM 14 South Networks IntraLock 30 3Com 4400 Switch 3Com 4500 Switch 3Com 4500G Switch 3Com 4800G Switch 3Com 5500 Switch family 3Com 5500G Switch family 3Com 7750 Switch family 3Com 8800 Switch family 3Com H3C MR20, MR30, MR50 3Com H3C NetSream 3Com H3C S3xxx, S9xxx 3Com H3C SecPath F1xxx 3Com S7900E Switch family ActiveState Stackato (Technology Partner) Adtran Atlas Switch Adtran NetVanta 1335 Router Adtran NetVanta 1524 Router Adtran NetVanta 1534 Switch Adtran NetVanta 1544 Switch Adtran NetVanta 2000 series Router Adtran NetVanta 3120 Router Adtran NetVanta 3130 Router Adtran NetVanta 3200 Router Adtran NetVanta 3205 DC Router Adtran NetVanta 3205 Router Adtran NetVanta 3305 Router Adtran NetVanta 3430 Router Adtran NetVanta 3448 Router Adtran NetVanta 3450 Router Adtran NetVanta 3458 Router Adtran NetVanta 4350 Router Adtran NetVanta 4430 Router Adtran NetVanta 5305 Router Adtran NetVanta 7100 Router
Allied Telesis AR-700 family Amazon EC2 instances Apache 1.3 Apache 2.0 Apache 2.2 Apache 2.3.5 APC InfraStruXure APC UPS Network Management Card¹ Aruba 200 Aruba 2400 Aruba 3000 Aruba 5000/6000 Aruba Wireless AP ArubaOS Astaro Firewall ASG Astaro Security Gateway 110 Astaro Security Gateway 120 Astaro Security Gateway 220 Astaro Security Gateway 320 Astaro Security Gateway 425 Astaro Security Gateway 525 Astaro Security Gateway 625 Blade RackSwitchp Blue Coat ProxySG 210 series Blue Coat ProxySG 510 series Blue Coat ProxySG 810 series Blue Coat ProxySG 8100 series Blue Coat ProxySG 9000 series BorderWare FW BrightStor Celestix FV830 Celestix FV930 CentOS Linux Check Point Edge W32 and WU Check Point Edge X Firewall Check Point Enterprise and Standard NGX Check Point Firewall Check Point Firewall-1 GX Check Point FW1 Check Point NG
Check Point Pointsec PC Check Point Safe@Office Check Point UTM-1 1050 Check Point UTM-1 1070 Check Point UTM-1 1073 Check Point UTM-1 1076 Check Point UTM-1 2050 Check Point UTM-1 2070 Check Point UTM-1 2073 Check Point UTM-1 2076 Check Point UTM-1 3070 Check Point UTM-1 3073 Check Point UTM-1 3076 Check Point UTM-1 450 Check Point UTM-1 570 Check Point UTM-1 572 Check Point UTM-1 576 Check Point VPN-1 25, 50, 100, 250, 500 and VPN Pro 50-NG, 100-NG, XL-NG Check Point VPN-1 Edge S8 Check Point VPN-1 Edge W8, W16, X8, X16, X32, XU Check Point VPN-1 Edge X1 Check Point VPN-1 Edge X16 Check Point VPN-1 Edge X32 Check Point VPN-1 Edge XU Check Point VPN-1 MASS Check Point VPN-1 Power Check Point VPN-1 Power Multi-core Check Point VPN-1 Power VSX Check Point VPN-1 UTM Check Point VPN-1 UTM Power Cisco 1600 series routers (IOS 12.2+) Cisco 1700 series routers (IOS 12.2+) Cisco 1800 series routers (IOS 12.2+) Cisco 1900 series routers (IOS 12.2+) Cisco 2100 Series WLAN Controller Cisco 2500 series routers (IOS 12.2+) Cisco 2600 series routers (IOS 12.2+) Cisco 2800 series routers (IOS 12.2+) Cisco 2900 series routers (IOS 12.2+) Cisco 3600 series routers (IOS 12.2+) IT Compliance & Event Log Management Software for SIEM
Cisco 3700 series routers (IOS 12.2+) Cisco 3800 series routers (IOS 12.2+) Cisco 3900 series routers (IOS 12.2+) Cisco 4000 series routers (IOS 12.2+) Cisco 4400 Series WLAN Controller Cisco 5500 Series WLAN Controller Cisco 7000 series routers (IOS 12.2+) Cisco 7100 series routers (IOS 12.2+) Cisco 7100 w/vpn Cisco 7200 series routers (IOS 12.2+) Cisco 7300 series routers (IOS 12.2+) Cisco 7301 Router Cisco 7400 series routers (IOS 12.2+) Cisco 7500 series routers (IOS 12.2+) Cisco 7600 series routers (IOS 12.2+) Cisco 800 series routers (IOS 12.2+) Cisco 800,1700,1800,1900,2900,3900,2800,3700,3800,7200,7200VXR series Cisco 900 series routers (IOS 12.2+) Cisco ACS Appliance 3.x Cisco ACS Appliance 4.x Cisco ACS Appliance 5.x Cisco Aironet 1130 AG Series Cisco Aironet 1140 Series Cisco Aironet 1200 Series Cisco Aironet 1230 AG Series Cisco Aironet 1240 AG Series Cisco Aironet 1250 Series Cisco Aironet 1260 Series Cisco Aironet 3500 Series Cisco ASA 5505 Cisco ASA 5505SP Cisco ASA 5510 Cisco ASA 5510SP Cisco ASA 5520 Cisco ASA 5520 VPN+ Cisco ASA 5540 Cisco ASA 5540 VPN Premium Cisco ASA 5540 VPN+ Cisco ASA 5550 Cisco ASA 5580-20 IT Compliance & Event Log Management Software for SIEM
Cisco ASA 5580-40 Cisco ASA 5585-X Cisco ASA w/ AIP-SSM Cisco ASA w/ CSC-SSM Cisco C7600 Series Cisco Catalyst 1900 Series Cisco Catalyst 2350 Series Cisco Catalyst 2940 Series Cisco Catalyst 2950 Series Cisco Catalyst 2955 Series Cisco Catalyst 2960 Series Cisco Catalyst 3560 Series Cisco Catalyst 3750-E Series Cisco Catalyst 4500 Series Cisco Catalyst 4900 Series Cisco Catalyst 4900 series (IOS 12.2+) Cisco Catalyst 5000 series (CatOS 6.2+) Cisco Catalyst 6000 series (CatOS 6.2+) Cisco Catalyst 6500 series (CatOS 6.2+) Cisco Catalyst 6500 Series IDS Cisco CatOS Cisco Content Security and Control Security Services Module Cisco Content Services Switch 11500 Series Cisco FWSM (Firewall Services Module) Cisco IDSM-2 Cisco IOS (Mostly used by Routers and Switches) Cisco IronPort (Email Security) Cisco IronPort (Web Security) Cisco MDS 9506 Multilayer Director Cisco MDS 9509 Multilayer Director Cisco MDS 9513 Multilayer Director (SAN) Cisco ME38xx Cisco Network Registrar for Windows Cisco NM-CIDS Cisco NX OS Cisco PIX 501 Cisco PIX 506 Cisco PIX 515 Cisco PIX 525 Cisco PIX 535 IT Compliance & Event Log Management Software for SIEM
Cisco Secure ACS Appliance 1113 Cisco Secure ACS Appliance 1120 Cisco SOHO 70 series Cisco VPN 3000 Cisco VPN 3005 Cisco VPN 3015 Cisco VPN 3030 Cisco VPN 3060 Cisco VPN 3080 Cisco VPN Concentrator Cisco VPN Concentrator 3xxx Cisco Wireless LAN Controller Citrix NetScaler Citrix Secure Access Gateway Clavister Consentry LANShield Controller Consentry Networks CS Switch Corente AWB¹ Corero IPS 5500 Crossbeam C10 Crossbeam C12 Crossbeam C2 Crossbeam C25 Crossbeam C30 Crossbeam C6 Crossbeam X40 Crossbeam X40S Crossbeam X45 Crossbeam X80 CyberGuard FS, SG, SL CyberGuard TSP Security Appliance Debian Linux Dell OpenManage Dell PowerConnect Switches EdgeWave St Bernard iprism EMC Flare ( Import) Enterasys C-series Enterasys Dragon 10 GB Enterasys FE100 Enterasys GE250
Enterasys GE500 Enterasys GIG Enterasys N-series esafe Data Leak Prevention esoft InstaGate Firewall 404 esoft InstaGate Firewall 604 esoft InstaGate Firewall 806 esoft ThreatWall 250 esoft ThreatWall 450 esoft ThreatWall 650 Extreme Alpine 3800 Series Extreme Alpine 3xxx; Extreme Black Diamond 6808 Extreme Sentriant Extreme Summit 200 Series Extreme Summit 300 Series Extreme Summit 350 Extreme Summit 400 Series Extreme Summit 48si Extreme Summit X250e Series Extreme Summit X350 Series Extreme Summit X450a Series Extreme Summit X450e Series Extreme Summit X480 Series Extreme Summit X650 Series F-Secure AntiVirus 7 F5 Network BIG-IP 11050 F5 Network BIG-IP 1600 F5 Network BIG-IP 3600 F5 Network BIG-IP 3900 F5 Network BIG-IP 6900 F5 Network BIG-IP 8900 F5 Network BIG-IP 8950 F5 Network BIG-IP Local Traffic Manager F5 Network FirePass 1000¹ F5 Network FirePass 1200¹ F5 Network FirePass 4100¹ F5 Network FirePass 4300¹ ForeScout ActiveScout¹ ForeScout CounterACT¹
FortiGate-1000 FortiGate-1000C FortiGate-100A FortiGate-101 FortiGate-110C FortiGate-111C FortiGate-1240B FortiGate-200A FortiGate-200B/200B-POE FortiGate-201 FortiGate-224B FortiGate-3001 FortiGate-300A FortiGate-300C FortiGate-301 FortiGate-3016B FortiGate-3040B FortiGate-30B FortiGate-310B FortiGate-311B FortiGate-3140B FortiGate-3240C FortiGate-3600A FortiGate-3810A FortiGate-3950B FortiGate-400A FortiGate-401 FortiGate-5000 Series Blades FortiGate-5000 Series Chassis FortiGate-5001 FortiGate-500A FortiGate-501 FortiGate-50A FortiGate-50B FortiGate-51B FortiGate-600C FortiGate-60B FortiGate-61 FortiGate-620B FortiGate-800
FortiGate-800C FortiGate-80C FortiSwitch-5000 Series Blades FortiWifi-30B FortiWifi-50B FortiWifi-60B Foundry BigIron Foundry BigIron RX Foundry FastIron Foundry FastIron 1500 Foundry FastIron 400 Foundry FastIron 800 Foundry FastIron Edge Switch 2402 Foundry FastIron Edge Switch 4802 Foundry FastIron Edge Switch 9604 Foundry NetIron 4xx, IMR 640, 8xx, MG8, MLX, 15xx, 4xxx, 8xxx and 16xxx Free BSD FreeRADIUS FreshClam Globalscape EFT Server Enterprise for Windows Globalscape Secure FTP (Import) GTA GB-2000 GTA GB-250 GTA GB-3000 GTA GB-800 GTA GNAT Box HP ProCurve 4104gl HP ProCurve 4108gl HP ProCurve 4108gl bundle HP ProCurve 4140gl HP ProCurve 4148gl HP ProCurve 4160gl HP ProCurve Switch 2124 HP ProCurve Switch 2312 HP ProCurve Switch 2324 HP ProCurve Switch 2510 HP ProCurve Switch 2510-24 HP ProCurve Switch 2510-48 HP ProCurve Switch 2510G-48 HP ProCurve Switch 2512
HP ProCurve Switch 2521 HP ProCurve Switch 2524 HP ProCurve Switch 2600 HP ProCurve Switch 2600-8-PWR HP ProCurve Switch 2610-24 HP ProCurve Switch 2610-24-PWR HP ProCurve Switch 2610-48 HP ProCurve Switch 2626 HP ProCurve Switch 2626-PWR HP ProCurve Switch 2650 HP ProCurve Switch 2650-PWR HP ProCurve Switch 2708 HP ProCurve Switch 2724 HP ProCurve Switch 2800 HP ProCurve Switch 2810 HP ProCurve Switch 2810-24G HP ProCurve Switch 2810-48G HP ProCurve Switch 2824 HP ProCurve Switch 2848 HP ProCurve Switch 2900 Series HP ProCurve Switch 2900-24G HP ProCurve Switch 2900-48G HP ProCurve Switch 2910al HP ProCurve Switch 3400cl HP ProCurve Switch 3400zl HP ProCurve Switch 3500yl HP ProCurve Switch 3500zl HP ProCurve Switch 4104gl HP ProCurve Switch 4108gl HP ProCurve Switch 4108gl bundle HP ProCurve Switch 4140gl HP ProCurve Switch 4148gl HP ProCurve Switch 4160gl HP ProCurve Switch 4200vl HP ProCurve Switch 4200vl-72 HP ProCurve Switch 4208vl HP ProCurve Switch 5300zl HP ProCurve Switch 5308xl HP ProCurve Switch 5348xl HP ProCurve Switch 5372xl
HP ProCurve Switch 5400yl-24G-PWR HP ProCurve Switch 5400yl-48G-PWR HP ProCurve Switch 5400zl HP ProCurve Switch 5406zl HP ProCurve Switch 5412zl HP ProCurve Switch 6108 HP ProCurve Switch 6120G/XG HP ProCurve Switch 6200yl-24G-mGBIC HP ProCurve Switch 6400cl HP ProCurve Switch 6410cl HP ProCurve Switch 8100fl Series HP ProCurve Switch 8206zl HP ProCurve Switch 8212zl HP ProCurve Switch 9300m Series HP-UX IBM AIX IBM AS400 IBM ISS HIDS IBM ISS Proventia IBM ISS Proventia A-series IBM ISS Proventia G-series IBM ISS Proventia M-series (FW, IPS, Antivirus, Antispam) IBM ISS SiteProtector IBM Lotus Notes (SNARE) IBM z/os * Imperva Juniper 63xx Juniper BX Series (JUNIPER) Juniper CTP Series (JUNIPER) Juniper E Series (Juniper) Juniper EX Series (Juniper) Juniper IDP 1100 Juniper IDP 200 Juniper IDP 250 Juniper IDP 50 Juniper IDP 600 Juniper IDP 75 Juniper IDP 800 Juniper IDP 8200 Juniper ISG (FW, VPN, IDP)
Juniper J Series (Juniper) Juniper JCS 1200 (Juniper) Juniper JunOS Juniper LN Series (Juniper) Juniper M20, 40e, 320 Juniper Netscreen 204 Juniper Netscreen 208 Juniper Netscreen 25 Juniper Netscreen 50 Juniper Netscreen 500 Juniper Netscreen 5200 Juniper Netscreen 5400 Juniper Netscreen 5GT, 5XT, 25, 50, 2xx, 5xx, 5xxx Juniper Netscreen 5XT Juniper Netscreen IDP Juniper Netscreen ISG 1000 Juniper Netscreen ISG 2000 Juniper Netscreen SSG 140 Juniper Netscreen SSG 20 Juniper Netscreen SSG 320 Juniper Netscreen SSG 350 Juniper Netscreen SSG 5 Juniper Netscreen SSG 520 Juniper Netscreen SSG 550 Juniper Netscreen SSL VPN Juniper Networks Secure Access 2000 Juniper Networks Secure Access 2500 Juniper Networks Secure Access 4000 Juniper Networks Secure Access 4500 Juniper Networks Secure Access 6000 Juniper Networks Secure Access 6000SP Juniper Networks Secure Access 6500 Juniper Networks Secure Access 700 Juniper Routers M Series Juniper SBR Juniper SSG ScreenOS Kaspersky AV (Eventlogs) Kerberos V5 Authentication Lightweight Directory Access Protocol (LDAP) Linux
Linux DHCP server LogAgent IOS-Based OEM Routers LogAgent iseries - LogAgent for OS/400 LogAgent iseries OS/400 (V5R2+) McAfee Foundstone FoundScan (Import Default Logs) Microsoft Exchange ActiveSync (Eventlogs) Microsoft ForeFront Client Security (Import) Microsoft ForeFront Security for Exchange (EventLogs) Microsoft ForeFront Security for Sharepoint (Eventlogs) Microsoft Hyper-V Microsoft IIS W3C FTP Server Microsoft IIS W3C Web Server Microsoft SharePoint Server (EventLogs) Microsoft SQL Server 2005/ 2008/ 2008 R2/ 2012 Microsoft Windows 7 (32/64) Microsoft Windows 8 (32/64) Microsoft Windows 98SE Microsoft Windows Backup and Restore Microsoft Windows Defender Microsoft Windows Deployment Services Microsoft Windows DHCP Server Microsoft Windows Directory Service 2000 Microsoft Windows Directory Service 2003 Microsoft Windows DNS Traffic Microsoft Windows File Replication Service Microsoft Windows Firewall Microsoft Windows Installer Microsoft Windows NT Server Microsoft Windows Server 2000 Microsoft Windows Server 2000 Professional Microsoft Windows Server 2003 (32/64) Microsoft Windows Server 2008 (32/64) & 2008 R2 Microsoft Windows Server 2012 (32/64) Microsoft Windows Terminal Server Microsoft Windows Time service Microsoft Windows Vista (32/64) Microsoft Windows XP (32/64) Neo Accel SSL VPN Neo Accel SSL VPN-Plus series Nessus (Import)
NetContinuum NC Netfilter Linux 2.4+ (IP Tables/Netfilter) Netfilter Linux Auditdp Netgear FV Series Netgear SSL VPN Concentrator Netilla Security Platform Netilla SGA-T Nortel Alteon 2208 Nortel Alteon 2216 Nortel Alteon 2424 Nortel VPN Contivity Nortel WLAN Security Switch Novell Identity Audit Novell Netware Open SUSE Linux OpenBSD FTP Oracle 10 (Windows, Unix) Oracle 11 (Windows, Unix) Oracle 9 (Windows) Oracle Standard and Enterprise Edition Palo Alto PA-2000 Series Palo Alto PA-2000 Series Firewall Palo Alto PA-4000 Series Palo Alto PA-4000 Series Firewall Palo Alto PA-500 firewall Print Server Radware Alteon 2208E Radware Alteon 2216E Radware Alteon 2424-SSL-E Radware Alteon 2424E Radware Alteon 3408E Radware Alteon Link Proof Wan Switchp Red Hat Enterprise Linux Red Hat Linux Samba1 SELinux Snort Solaris 8, 9, 10,x86 SonicWall Aventail SSL VPN E-Classp
SonicWall GMS SonicWall GX 250 SonicWall GX 650 SonicWall NSA 240 SonicWall NSA 2400 SonicWall NSA E3500 SonicWall NSA E4500 SonicWall NSA E5000 SonicWall NSA E5500 SonicWall NSA E6500 SonicWall NSA E7500 SonicWall PRO 100 SonicWall PRO 1260 SonicWall PRO 200 SonicWall PRO 2040 SonicWall PRO 300 SonicWall PRO 3060 SonicWall PRO 4060 SonicWall PRO 4100 SonicWall PRO 5060 SonicWall PRO VX SonicWall SOHO2/10 SonicWall SOHO2/25 SonicWall SOHO2/50 SonicWall SOHO3 SonicWall SRA EX6000 SonicWall SRA EX7000 SonicWall SRA EX9000 SonicWall SSL VPN SonicWall TELE2 SonicWall TELE3 SonicWall TELE3SP SonicWall TELE3TZ SonicWall TZ 150 SonicWall TZ 170 SonicWall TZ 170 SP SonicWall TZ 180 SonicWall TZ 190 SonicWall TZ 210 SonicWall Web Filter
SonicWall XPR52 SonicWall XPRS2 Squid Proxy SquidGuard Access Block Log Stonesoft StoneGate Sudo log SUSE Linux Symantec Gateway IDS Symantec Gateway Security 5110 Symantec Gateway Security 5200 Symantec Gateway Security 5310 Symantec Gateway Security 5420 Symantec Gateway Security 5440 Symantec Gateway Security 5441 Symantec Gateway Security 5460 Symantec Gateway Security 5461 Symantec Gateway Security 5620 Symantec Gateway Security 5640 Symantec Gateway Security 5660 Symantec Velociraptor 1100 (Import) Tipping Point IPS 100E Tipping Point IPS 1200 Tipping Point IPS 1200E Tipping Point IPS 200 Tipping Point IPS 200E Tipping Point IPS 2400 Tipping Point IPS 2400E Tipping Point IPS 400 TippingPoint 10 TippingPoint 110 TippingPoint 330 TippingPoint IPS TippingPoint IPS 210E TippingPoint IPS 50 TippingPoint IPS 5000E TippingPoint IPS 600E TippingPoint SMS TippingPoint Unity TippingPoint X505 TippingPoint X506
TippingPoint ZPHA TopLayer Attack Mitigator IPS 5500 Series Trend Micro Antivirus Trend Micro InterScan Trend Micro InterScan Messaging Security (IMSS) Trend Micro InterScan Messaging Security Suite Trend Micro OfficeScan Client/Server Edition 8.0 Trend Micro ScanMail for Exchange/Lotus Domino Trend Micro ServerProtect Ubuntu Linux Vision Solution DoubleTake (Eventlogs) VMware ESX and ESXi VMware TriCipher VMware vcenter WatchGuard FireBox III 1000 WatchGuard FireBox III 2500 WatchGuard FireBox III 4500 WatchGuard FireBox III 500 WatchGuard FireBox III 700 WatchGuard FireBox X WatchGuard FireBox X Core WatchGuard FireBox X Core E-Series WatchGuard FireBox X Edge E-Series WatchGuard FireBox X Peak E-Series WatchGuard SOHO 6 WatchGuard SOHO 6tc WatchGuard V10 WatchGuard V100 WatchGuard V120 WatchGuard V60 WatchGuard V80 WatchGuard xcore Firebox X1000 WatchGuard xcore Firebox X1250 WatchGuard xcore Firebox X2500 WatchGuard xcore Firebox X500 WatchGuard xcore Firebox X550 WatchGuard xcore Firebox X700 WatchGuard xcore Firebox X750 WatchGuard xedge Firebox X10 WatchGuard xedge Firebox X20
WatchGuard xedge Firebox X55 WatchGuard xpeak Firebox X5500 WatchGuard xpeak Firebox X6500 WatchGuard xpeak Firebox X8500 WatchGuard XTM 1050 WebRoot Antispyware Corporate Edition 2.5 (Import) WebRoot Antispyware Corporate Edition 3.5 (Import) WebSense Corporate Edition WebSense Enterprise and Security Suites WebSense SurfControl Websense Web Filter and Websense Web Security Database IT Compliance & Event Log Management Software for SIEM