Sonicwall Connector for Microsoft Sentinel
BoredToTears
Newbie ✭
We are in the process of configuring MS Sentinel SIEM and noticed that there is a Sonicwall connector in Azure commercial, but not in Azure Gov. I'm guessing connectors on the Gov side have very specific requirements to be allowed. For the Sonicwall folks, will the connector be offered at some point for the Azure Gov cloud?
For Sonicwall users who are using MS Sentinel - either commercial or gov - how are you sending your Sonicwall logs to Sentinel?
Category: High End Firewalls
0
Answers
Hi There,
Yes, we don't support SonicWall firewall integration with Azure Gov cloud yet.
We have a detailed integration guide on how to setup SonicWall Azure connector on Azure Sentinel along with its use cases. I would suggest reading it, please find it's link below.
https://www.sonicwall.com/support/knowledge-base/sonicwall-firewall-log-integration-with-microsoft-sentinel/210310071957057
https://www.sonicwall.com/medialibrary/docs/tech-alliance/SonicWall_MicrosoftSentinel_IntegrationGuide.pdf
Thanks for the information. This seems to be oriented toward using the Sonicwall data connector in Sentinel. Since we can't use the connector in Azure Gov, how would we forward the Sonicwall logs in that case? Would we just configure it as a standard syslog sender?