Tipping Point

To forward Tipping Point IPS logs to the Log Collector, the required steps are as follows:

• Log in to the Tipping Point system using GUI.

• On the Admin Navigation menu, select Server Properties.

• Select the Management tab.

• Click Add.

• The Edit Syslog Notification window is displayed.

• Select the Enable check box.

• Configure the following values:

• Syslog Server - Type the IP address of the Log Collector

• Port - Type 514 as the port address. Check Appendix A for default port list.

• Log Type - Select SMS 2.0 / 2.1 Syslog format from the list.

• Facility - Select Log Audit from the list.

• Severity - Select Severity in Event from the list.

• Delimiter - Select TAB as the delimiter for the generated logs.

• Include Timestamp in Header - Select Use original event timestamp.

• Select the Include SMS Hostname in Header check box.

• Click OK.