S I E M

Ingesting syslog for log aggregation

If you haven’t purchased Perch logging, please reach out to your sales representative.

How do I get my syslog data into Perch

In order to send your syslog data into Perch, you will need to configure your firewall, switch, router, etc. to send syslog data either to your sensor IP address or a Windows device. Sensors appliances support ingesting standard syslog data either via TCP or UDP on port 514. Windows devices support ingesting standard syslog data either on TCP 42515 or UDP 42514. Refer to Perch Log Shipper for Windows.

A common format for this would be x.x.x.x:514. Please refer to your vendor documentation on how to configure syslog output.