Protocol configuration options

Protocols in IBM® QRadar® provide the capability of collecting a set of data files by using various connection options. These connections pull the data back or passively receive data into the event pipeline in QRadar. Then, the corresponding Device Support Module (DSM) parses and normalizes the data.

The following standard connection options pull data into the event pipeline:

JDBC
FTP
SFTP
SCP

The following standard connection options receive data into the event pipeline:

Syslog
HTTP Receiver
SNMP

QRadar also supports proprietary vendor-specific protocol API calls, such as Amazon Web Services.