{"id":853,"date":"2017-10-01T09:46:30","date_gmt":"2017-10-01T08:46:30","guid":{"rendered":"http:\/\/www.balajibandi.com\/?p=853"},"modified":"2019-03-23T09:55:11","modified_gmt":"2019-03-23T09:55:11","slug":"wsa-logs-to-syslog-server-for-kibana-logstash","status":"publish","type":"post","link":"https:\/\/www.balajibandi.com\/?p=853","title":{"rendered":"WSA Logs to syslog Server for Kibana\/Logstash"},"content":{"rendered":"\n

Configuring Cisco WSA (Web Security Appliance) with SYSLOG Server<\/h4>\n\n\n\n

To configure Cisco WSA to send logs to your FTP Server: <\/p>\n\n\n\n

Log into your Cisco WSA web admin console and go to System Administration | Log Subscriptions<\/strong><\/p>\n\n\n\n

<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n
\"\"



<\/figcaption><\/figure>\n\n\n\n

\nClick accesslogs<\/strong> under the \u2018Log Name\u2019 column.\nSet the log style to Squid Details<\/strong>\nIn the Custom Fields<\/strong> section enter:\n<\/p>\n\n\n\n

#Fields: %L %e %a %k %B %A %w\/%h %s %q %g %p %R %c %XF %Y<\/pre>\n\n\n\n
This adds some useful fields such as referrer URL that WebSpy Vantage utilizes in reports. Set the Retrieval Method<\/strong> to FTP on Remote Server<\/strong>. Leave the Maximum Time Interva<\/strong>l between Transferring as the default (3600). Enter the FTP Host, Directory, Username and Password of your FTP server. <\/p>\n\n\n\n
\"\"<\/figure>\n\n\n\n
 Click Submit<\/strong> to save your changes. <\/p>\n\n\n\n
Commit<\/strong> the changes to take effective<\/p>\n","protected":false},"excerpt":{"rendered":"
Configuring Cisco WSA (Web Security Appliance) with SYSLOG Server To configure Cisco WSA to send logs to your FTP Server: Log into your Cisco WSA web admin console and go to System Administration | Log Subscriptions Click accesslogs under the \u2018Log Name\u2019 column. Set the log style to Squid Details In the Custom Fields section enter: #Fields: %L %e %a […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11],"tags":[],"class_list":["post-853","post","type-post","status-publish","format-standard","hentry","category-ccie-sec"],"_links":{"self":[{"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/posts\/853","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=853"}],"version-history":[{"count":2,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/posts\/853\/revisions"}],"predecessor-version":[{"id":858,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=\/wp\/v2\/posts\/853\/revisions\/858"}],"wp:attachment":[{"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=853"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=853"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.balajibandi.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=853"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}