IBM QRadar Network Security XGS
The IBM® QRadar® Network Security XGS DSM accepts events by using the Log Event Extended Format (LEEF), which enables IBM QRadar to record all relevant events.
The following table identifies the specifications for the IBM QRadar Network Security XGS DSM:
|
Specification |
Value |
|---|---|
|
Manufacturer |
IBM |
|
DSM |
QRadar Network Security XGS |
|
RPM file name |
DSM-IBMQRadarNetworkSecurityXGS-QRadar_version-build_number.noarch,rpm |
|
Supported versions |
v5.0 with fixpack 7 to v5.4 |
|
Protocol |
Syslog |
| Event format | LEEF |
|
QRadar recorded events |
All relevant system, access, and security events |
|
Automatically discovered |
Yes |
|
Includes identity |
No |
|
More information |
IBM QRadar Network Security (XGS) Knowledge Center (https://www.ibm.com/support/knowledgecenter/SSHLHV_5.4.0/com.ibm.alps.doc/alps_collateral/alps_dochome_stg.htm) |
Before you configure a Network Security XGS appliance in QRadar, you must configure remote syslog alerts for your IBM QRadar Network Security XGS rules or policies to forward events to QRadar.