Skip to content

Sumo Logic Log Forwarding

Overview

Valtix supports the forwarding of security and other event logs to Sumo Logic for processing, storage, access and correlation. The information sent is in unstructured JSON format, where Sumo Logic can process the attribute-value pairs.

Once configured, all existing and new Valtix Gateways using the defined Sumo Logic Profile will send Flow and Threat logs to your Sumo Logic Collector.

Requirements

In order to forward logs to Sumo Logic, you will need the following information:

  • Sumo Logic account
  • Sumo Logic collector endpoint

Tip

For information on how to setup Sumo Logic Collector, refer to Sumo Logic Setup Guide

Profile Parameters

Parameter Deonticity Default Description
Profile Name Required A unique name to use to reference the Profile
Description Optional A description for the Profile
SIEM Vendor Required Sumo Logic The SIEM used for the Profile
Endpoint Required The URL used to access the HTTP Collector