Skip to content

Configure a Sophos XG firewall to forward syslogs

  1. Navigate to System Services > Log Settings
  2. click Add and input or select the following values:
  3. Name ActZero_Logging
  4. IP Address The local IP of the ActZero VM
  5. Port 514
  6. Facility LOCAL7
  7. Severity level INFO
  8. Format Device Standard Format
  9. Click Save.

Update all policies to log events.

  1. Navigate to Firewall > Edit Firewall Rule
  2. Ensure the Log Firewall Traffic checkbox is on for every rule.

Reference Sophos XG documentation for further detail.


Was this documentation helpful? Please send us your feedback!