Cyderes accepts syslog connections using either a Cyderes-hosted cloud forwarder or a CYCLOPS forwarder. Logs sent using syslog may be formatted as syslog, JSON, or several other text-based formats.
Check the Cyderes Parser Knowledge Base to see if the integration method for your security product includes syslog. Syslog is often the most simple way to send your logs to Cyderes.
For either type of forwarder, Cyderes will a assign a port number for each security log type that you send. Port numbers are in the 30000 to 32767 range.
Cyderes-Hosted Cloud Forwarder¶
Cyderes can host a cloud-based forwarder for your organization. You may send logs to a cloud forwarder from your data center or from cloud-based security products if the security product supports syslog over TLS.
- Configure your security device to export syslog to the external URL and port number provided by Cyderes.
- The network must allow outbound traffic to the cloud forwarder.
You can deploy CYCLOPS to your data center and cloud environments. See the Cyderes CYCLOPS forwarder guide for more details.
- Configure your security device to export syslog to your internal URL or IP address and port number provided by Cyderes.