Support
 
Support Get Quote
 
 
 
 
 
Email Download Link

Sophos Log Monitoring

Home » Features » Sophos Log Monitoring

Sophos Cyberoam device auditing

Firewalls are a crucial layer of security in any network, and they're often an organization's first line of defense. Over the years, the functionality of firewalls has evolved to become more sophisticated. Many vendors now offer next-generation firewalls (NGFWs), moving beyond blocking traffic and port or protocol inspection, and adding application-level inspections and intrusion prevention systems (IPSs).

Sophos Cyberoam offers many NGFWs with built-in application inspection and control, website filtering, HTTPS inspection, IPSs, VPNs (IPSec and SSL), and granular bandwidth controls. Auditing these NGFWs can be useful for network security, as they provide a treasure trove of security information.

Reports on Sophos Cyberoam in EventLog Analyzer

Auditing Sophos Cyberoam logs and monitoring the activity in your firewall can help ensure network security. EventLog Analyzer provides out-of-the-box support for Sophos Cyberoam devices. It collects and analyzes Sophos Cyberoam logs to give you detailed audit reports and graphs, which provide the following insights.

  • Logon activity: A list of all the successful logons to the firewall, the hosts and users with the most logons, as well as logon patterns.
  • Failed logons: All failed logon attempts to the firewall, the hosts and users with the most failed logons, and failed logon patterns.
  • Allowed traffic: Details of all the connections that pass through the firewall into the network.
  • Denied connections: Details of all the connections that are denied access to the network.
  • System events: A list of all the packages installed or upgraded on the firewall.
  • IDS/IPS events: A list of possible and critical attacks, along with the source and destination devices most frequently involved in attack attempts. An attack trend report is also included.
  • Threat report: Details various attack types, such as flood attacks and spyware downloads.
  • Severity report: Classifies log information by severity and is useful for viewing all events (including emergency, error, critical, alert, warning, notice, information, and debug events) in a single click.

Correlation of Sophos Cyberoam log data

For better context, EventLog Analyzer performs event correlation while detecting security incidents. It correlates events happening in Sophos Cyberoam devices with the logs generated by the rest of the network.

Supported Firewalls, NGFWs, IDS, and IPS

Track activity happening in your Cyberoam devices.

  Download a free trial now!  Request demo

EventLog Analyzer Trusted By

Los Alamos National Bank Michigan State University
Panasonic Comcast
Oklahoma State University IBM
Accenture Bank of America
Infosys
Ernst Young

Customer Speaks

  • Credit Union of Denver has been using EventLog Analyzer for more than four years for our internal user activity monitoring. EventLog Analyzer provides great value as a network forensic tool and for regulatory due diligence. This product can rapidly be scaled to meet our dynamic business needs.
    Benjamin Shumaker
    Vice President of IT / ISO
    Credit Union of Denver
  • The best thing, I like about the application, is the well structured GUI and the automated reports. This is a great help for network engineers to monitor all the devices in a single dashboard. The canned reports are a clever piece of work.
    Joseph Graziano, MCSE CCA VCP
    Senior Network Engineer
    Citadel
  • EventLog Analyzer has been a good event log reporting and alerting solution for our information technology needs. It minimizes the amount of time we spent on filtering through event logs and provides almost near real-time notification of administratively defined alerts.
    Joseph E. Veretto
    Operations Review Specialist
    Office of Information System
    Florida Department of Transportation
  • Windows Event logs and device Syslogs are a real time synopsis of what is happening on a computer or network. EventLog Analyzer is an economical, functional and easy-to-utilize tool that allows me to know what is going on in the network by pushing alerts and reports, both in real time and scheduled. It is a premium software Intrusion Detection System application.
    Jim Lloyd
    Information Systems Manager
    First Mountain Bank
TestimonialsCase Studies

Awards and Recognitions

  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
  •  
A Single Pane of Glass for Comprehensive Log Management
Log ManagementLog AnalysisIT ComplianceSIEMQuick LinksRelated Products

A Single Pane of Glass for Comprehensive Threat Management

Free Trial Get Quote
Email Download Link