Table of Contents
Advertisement
Configuring Juniper
Steel-Belted Radius
for Syslog
Step 1
Step 2
Step 3
Step 4
Step 5
Step 6
Juniper Networks
vGW Virtual
Gateway
Step 1
Step 2
Step 3
Step 4
To integrate a Juniper Steel-Belted Radius DSM with SIEM using syslog on a
Linux-based operating system:
Using SSH log in to your Juniper Steel-Belted Radius device, as a root user.
Edit the following file:
/etc/syslog.conf
Add the following information:
<facility>.<priority>
Where:
is the syslog facility, for example,
<facility>
<priority> is the syslog priority, for example,
is the IP address of SIEM.
<IP address>
Save the file.
From the command line, type the following command to restart syslog:
service syslog restart
You are now ready to configure the log source in SIEM.
To configure SIEM to receive events from Juniper Steel-Belted Radius:
From the Log Source Type drop-down list box, select the Juniper Steel
Belted Radius option.
For more information on configuring log sources, see the Log Sources User Guide.
For more information on configuring your Steel-Belted Radius server consult your
vendor documentation.
A SIEM Juniper Networks vGW Virtual Gateway DSM accepts events using syslog
and NetFlow from your vGW management server or firewall. SIEM records all
relevant events, such as admin, policy, IDS logs, and firewall events. Before
configuring an Juniper Networks vGW Virtual Gateway in SIEM, you must
configure vGW to send events to SIEM.
To integrate SIEM with a Juniper Networks vGW Virtual Gateway:
Log in to your Juniper Networks vGW user interface.
Select Settings.
From Security Settings, select Global.
From External Logging, select one of the following:
•
Send Syslog from vGW management server - Central logging with syslog
event provided from a management server.
Configuring DSMs
Juniper Networks vGW Virtual Gateway
@<IP address>
.
local3
.
info
185
Advertisement
Table of Contents
