Skip to content
Merged
Show file tree
Hide file tree
Changes from 8 commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 3 additions & 3 deletions packages/sophos/_dev/build/docs/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -4,8 +4,8 @@ The Sophos integration collects and parses logs from Sophos Products.

Currently it accepts logs in syslog format or from a file for the following devices:

- `utm` dataset: supports Astaro Security Gateway logs.
- `xg` dataset: supports Sophos XG SFOS logs.
- `utm` dataset: supports [Unified Threat Management](https://www.sophos.com/en-us/support/documentation/sophos-utm) (formerly known as Astaro Security Gateway) logs.
- `xg` dataset: supports [Sophos XG SFOS logs](https://docs.sophos.com/nsg/sophos-firewall/17.5/Help/en-us/webhelp/onlinehelp/nsg/sfos/concepts/Logs.html).

To configure a remote syslog destination, please reference the [SophosXG/SFOS Documentation](https://community.sophos.com/kb/en-us/123184).

Expand All @@ -20,7 +20,7 @@ Versions above this are expected to work but have not been tested.

### Utm log

The `utm` dataset collects Astaro Security Gateway logs.
The `utm` dataset collects Unified Threat Management (formally known as Astaro Security Gateway) logs.
Comment thread
ellis-elastic marked this conversation as resolved.
Outdated

{{fields "utm"}}

Expand Down
5 changes: 5 additions & 0 deletions packages/sophos/changelog.yml
Original file line number Diff line number Diff line change
@@ -1,4 +1,9 @@
# newer versions go on top
- version: "2.2.2"
changes:
- description: Update Readme to include links to Sophos's documentation. Also used the latest product name for Astaro
type: enhancement
link: https://github.com/elastic/integrations/pull/3160
- version: "2.2.1"
changes:
- description: Format source.mac and destination.mac as per ECS for the UTM data stream.
Expand Down
6 changes: 3 additions & 3 deletions packages/sophos/docs/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -4,8 +4,8 @@ The Sophos integration collects and parses logs from Sophos Products.

Currently it accepts logs in syslog format or from a file for the following devices:

- `utm` dataset: supports Astaro Security Gateway logs.
- `xg` dataset: supports Sophos XG SFOS logs.
- `utm` dataset: supports [Unified Threat Management](https://www.sophos.com/en-us/support/documentation/sophos-utm) (formerly known as Astaro Security Gateway) logs.
- `xg` dataset: supports [Sophos XG SFOS logs](https://docs.sophos.com/nsg/sophos-firewall/17.5/Help/en-us/webhelp/onlinehelp/nsg/sfos/concepts/Logs.html).

To configure a remote syslog destination, please reference the [SophosXG/SFOS Documentation](https://community.sophos.com/kb/en-us/123184).

Expand All @@ -20,7 +20,7 @@ Versions above this are expected to work but have not been tested.

### Utm log

The `utm` dataset collects Astaro Security Gateway logs.
The `utm` dataset collects Unified Threat Management (formally known as Astaro Security Gateway) logs.

**Exported fields**

Expand Down
2 changes: 1 addition & 1 deletion packages/sophos/manifest.yml
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
format_version: 1.0.0
name: sophos
title: Sophos Logs
version: "2.2.1"
version: 2.2.2
description: Collect and parse logs from Sophos Products with Elastic Agent.
categories: ["security"]
release: ga
Expand Down