Supported Data Sources

Log Sources Supported for Compliant Log Management & Storage:

Support includes compliant storage of all log files. Text log files may also be analyzed via text search, and can be used to create additional event detail for full analysis, even if the log source is not listed below.

Universal Log Support
All Event Logs
All Syslog, Syslog-NG
All Application Logs
All Host / Server / OS Logs
Binary Logs
others

Log & Data Sources for Full Analysis:

Support includes full parsing and normalization of data sources into a common data management engine. This engine uses broad indexing and data enhancement techniques to provide a high level of context—for an unprecedented level of detail and performance.

AntiVirus
McAfee	McAfee Antivirus
Symantec	Symantec Anti Virus
Symantec	Symantec Endpoint Protection
Trend Micro	Trend Micro Control Manager (IMSS and IWSS)

Applications
Airtight Interactive	Airtight Interactive
Apache	Apache
Blue Lance	BlueLance LT Auditor + for Novell Netware
Cisco	Cisco SDEE
Cisco	TACACS+
Citrix	Citrix Secure Access Gateway
CoreTrace	Bouncer
McAfee	McAfee ePolicy Orchestrator (EPO)
Microsoft	Microsoft Windows
SafeNet	Safenet HSM
Symantec	Symantec Mail Security for SMTP
NitroSecurity	NitroView ADM — Supported Application & Document Types

Authentication
Alcatel-Lucent	Info Express Cyber Gatekeeper LAN
Cisco	TACACS+
Cisco	TACPlus
FreeRadius	FreeRADIUS Authentication
Microsoft	Active Directory
RSA	RSA Authentication Manager (windows)
RSA	RSA Authentication Manager (UNIX)
RSA	Authentication Manager (windows)
RSA	Authentication Manager (UNIX)
Tivoli	Tivoli Access Manager

Database
IBM	DB2
Microsoft	Microsoft SQL Server
Microsoft	MySQL
NitroSecurity	NitroView DBM
Oracle	Oracle Common Audit
Oracle	Oracle Fine-Grained Audit
Sybase	Sybase
Tripwire	Tripwire For Server
For additional database monitoring, consider database activity monitoring using NitroView DBM

Firewall
Check Point	Check Point Edge W32 and WU
Check Point	Check Point Enterprise and Enterprise Pro
Check Point	Check Point Express
Check Point	Check Point FW-1 Limited
Check Point	"Check Point FW1, NG, NGX Standard"
Check Point	Check Point Smart Center Enterprise Pro
Cisco	Cisco ASA
Cisco	Cisco Firewall and Service Module
Cisco	Cisco IOS Firewall
Cisco	"Cisco IOS ACL, IOS FW, IOS IDS "
Cisco	Cisco PIX
Cisco	Cisco PIX IDS
CyberGuard	"CyberGuard (includes FS, SG, SL)"
Fortinet	Fortinet Fortigate
Juniper	Juniper Netscreen Firewall
McAfee	Secure Computing Sidewinder
Microsoft	Microsoft ISA Server
NitroSecurity	NitroSecurity IPS
Nokia	Nokia IPSO
SonicWALL	SonicWALL FW
Stonesoft	Stonesoft Stonegate Firewall /VPN
Stonesoft	Stonesoft Stonegate Management Center
Symantec	Symantec Enterprise Firewall
Zonelabs	Zonelabs Integrity

Host / Server / Operating Systems
Cisco	CATOS
HP	HP-UX (Hewlett-Packard)
IBM	IBM AIX OS
IBM	ISS Desktop Protector
IBM	ISS Real Secure Server Sensor
ISA	Snare
LINUX	LINUX
Microsoft	Microsoft IIS
Microsoft	Microsoft Operations Manager
Microsoft	WMI
Red Hat	Red Hat Linux OS Events
Sun	Solaris BSM
Sun	Solaris OS Events
Symantec	Symantec Intruder Alert
Type 80	Type 80 SMA_RT
VMWare	VMWare Server (version 1 to 4)

IDS / IPS
Check Point	Network Flight Recorder / Check Point IPS-1
Cisco	Cisco ACS
Cisco	Cisco CSA
Cisco	Cisco Guard
Cisco	Cisco IDS
Cisco	Cisco IDSM
Cisco	Cisco IOS IDS
Cisco	Cisco IOS IPS
Cisco	Cisco IPS
Enterasys	Enterasys Dragon Sensor/Squire
Juniper	Juniper Netscreen IDP
Lancope	Lancope Stealth Watch
McAfee	McAfee HIPS
McAfee	McAfee Intrushield
PacketAlarm	PacketAlarm IPS
Radware	Radware DefensePro
Sourcefire	Snort NIDS
Sourcefire	Sourcefire Intrusion Sensor
Stonesoft	Stonesoft Stonegate IPS
Symantec	Symantec Critical System Protection
Symantec	Symantec HIDS
Symantec	Symantec ManHunt
TippingPoint	Tippingpoint Unitity One
Top Layer	TopLayer Attack Mitigator
Tripwire	Tripwire NIDS
For intrusion prevention with built-in firewall & network flow collection, consider using NitroGuard IPS

Mainframes
CA	Datacom
IBM	z/OS
IBM	z/VM

Network Switches & Routers
Airdefense	Airdefense
Arbor	Arbor Peakflow DoS/SP
Arbor	Arbor Peakflow X
Bradford	Bradford Campus Manager
Brocade	"Foundry BigIron, FastIron and NetIron"
Cisco	Cisco CCA (NAC Appliance)
Cisco	Cisco IOS ACL
Cisco	Cisco Wireless LAN Controllers
Cisco	NetFlow (Generic)
HP	HP ProCurve
Juniper	Juniper Netscreen Security Manager
Juniper	Juniper Routers (JunOS)
Mirage Networks	Mirage Counterpoint
netIQ	netIQ Security Manager
sFlow	sFlow (Generic)
For additional network flow collection, consider using NitroGuard IPS

Protocols
NitroSecurity	NitroView ADM — Supported Protocols

Security Appliances / UTMs
Barracuda	Barracuda SPAM Filter
Barracuda	Barracuda Web Security Gateways

Virtual Private Networks
Check Point	Check Point HA VPN-1
Check Point	Check Point VPN Pro
Check Point	Check Point VPN-1 Edge
Check Point	Check Point VPN-1 Express
Cisco	Cisco VPN Concentrator
Cisco	Cisco VSM (VPN Switch Blade)
Juniper	Juniper Secure Access SSL VPN
Nortel	Nortel Contivity
Symantec	Symantec Enterprise VPN

Vulnerability Systems
Lumension	Lumension Scan
McAfee	Foundstone Foundscan
Nessus	Nessus
Qualys	Qualys
Rapid 7	Rapid 7
Saint	Saint Vulnerability Scanner
eEye	eEye
nCircle	IP360 Scanner

Web Content, Filtering, Proxies
Blue Coat	Blue Coat SG Series
Cisco	Cisco Content Engine
Cisco	Cisco IronPort
Cisco	Cisco MARS
Citrix	Citrix NetScaler
F5	ASN
IBM	ISS Site Protector
McAfee	McAfee WebShield
Microsoft	Microsoft SCOM
Secure Computing	IronMail
Squid	Squid Proxy
Sun	iPlanet
TippingPoint	Tippingpoint SMS 2.0 Format
Websense	Websense Enterprise

Other
IBM	ISS Real Secure Network Sensor
Microsoft	Microsoft Exchange Server
Microsoft	Microsoft Active Directory
NitroSecurity	Nitro Plug-in Protocol
NitroSecurity	NitroSecurity SNMP

The list of supported devices is subject to change without notice.

These icons link to social bookmarking sites to help share this content.

share this page:

The Full Potential of SIEM ... Realized

Products

Supported Data Sources

Log Sources Supported for Compliant Log Management & Storage:

Log & Data Sources for Full Analysis:

Search NitroSecurity.com