Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
azientak
Employee
Employee

Log Exporter filter for VPN logins

Hi Experts,

I have a customer that would like to create a filter using log exporter to export all Mobile access Logins to a syslog server on a SIEM platform. 

Currently we have tried this filter, however it does not catch logins:

 <filters>
        <filterGroup operator="and">
                <field name="action" operator="or”>
                </field>
                <field name="origin" operator="and">
                </field>
                <field name="product" operator="or">
                        <value operation="eq">Mobile Access</value>
                </field>
                <field name="user" operator="and">
                </field>
                <field name="source" operator="and">
                </field>
        </filterGroup>
</filters>

Can anyone assist with a filter that can catch mobile access connections/logins?

0 Kudos
Reply
0 Replies