Syslog data source parameters for Zscaler NSS

Type the IP address as an identifier for events from your Zscaler NSS installation.

The data source identifier must be a unique value.

By default, the check box is selected.

Select the credibility of the data source. The range is 0 - 10.

The credibility indicates the integrity of an event or offense as determined by the credibility rating from the source devices. Credibility increases if multiple sources report the same event. The default is 5.

Select the Target Event Collector to use as the target for the data source.

Select this option for the data source to coalesce (bundle) events.

By default, automatically discovered data sources inherit the value of the Coalescing Events list from the System Settings in the QRadar product. When you create a data source or edit an existing data source configuration, you can override the default value by configuring this option for each data source.

Select the Incoming Payload Encoder option for parsing and storing the logs from the list.

Select this option to enable the data source to store event payload information.

By default, automatically discovered data sources inherit the value of the Store Event Payload list from the System Settings in the QRadar product. When you create a data source or edit an existing configuration, you can override the default value by configuring this option for each data source.

Select the language of the events that are generated by Zscaler NSS.