Untangle NG Firewall

When you configure your Untangle NG Firewall to send log data to USM Appliance, you can use the Untangle NG Firewall plugin to translate raw log data into normalized events for analysis. The table below provides some basic information for the plugin.

Plugin Information
Device	Details
Vendor	Untangle
Device Type	Firewall
Connection Type	Syslog
Data Source Name	Untangle-NGFW
Data Source ID	1843

Integrating Untangle NG Firewall

Before you configure the Untangle NG Firewall integration, you must have the IP Address of the USM Appliance Sensor.

To configure Untangle NG Firewall to send Syslog messages to USM Appliance

From the Untangle Administration interface, select Reports Settings > Syslog.
Configure the following options:

Host: Enter the USM ApplianceIP Address.
Port: 514
Protocol: This is the protocol used to send syslog messages. UDP is the default protocol.

Plugin Enablement

For plugin enablement information, see Enable Plugins.

Additional Resources and Troubleshooting

https://wiki.untangle.com/index.php/Reports#Syslog

For troubleshooting, refer to the vendor documentation:

https://support.untangle.com/hc/en-us/articles/200683678-Troubleshoot-throughput-through-NG-Firewall

Feedback

Questions or comments on this page's content? Let us know.

Feedback

Feedback

We have received your feedback. Thank you.