Actionable Security Intelligence by Netsurion

About Netsurion
Partners
Contact Us
Schedule Demo

Solutions
Co-Sourcing SIEM
When outsourcing isn’t an option but SIEM proficiency is beyond the internal staff’s expertise, a hybrid approach is essential.

Download the Report
Solutions

Co-managed SIEM

Managed SIEM for MSPs

Managed EDR

SIEM Software

Centralized Log Management

Advanced Threat Protection
Capabilities
EventTracker Essentials is a managed security solution delivering advanced threat protection and compliance for SMBs.

Download the Datasheet
Capabilities

SIEM and Log Management

Threat Detection and Response

Vulnerability Assessment

User and Entity Behavior Analytics

Security Orchestration and Automation

Compliance

Let's Go Threat Hunting: Gain Visibility and Insight into Potential Threats and Risks
Industries
Choosing the Right SIEM
Find out how to cut through all the vendor hype and select the right solution for your environment and needs.

Download the Whitepaper
Industries

Finance and Banking

Energy and Utilities

Legal

Higher Education

Government

Healthcare

Retail

Bracing for the Tidal Wave of Data Privacy Compliance in America
Knowledge Center
Find out what it takes to operate a SOC and how your organization can get there fast, effectively, and affordably.

Download the Whitepaper
Knowledge Center

Catch of the Day

Articles

Videos and Webcasts

Infographics

Whitepapers

Case Studies

Upcoming Events

View Recent Catches
Support
Strengthen your security defenses, respond effectively, control costs, and optimize your team's capabilities through SIEMphonic, a co-managed security solution.

Catch More Threats
Support

Product Guides

Software Updates

Knowledge Packs

Online Help

Online Training

Customer Support Portal
About
Partners
Contact Us
Schedule Demo

Close

Knowledge Packs

Support
Product Guides
Intelligence
- Knowledge Packs
- Compliance Center
Tutorials
- Product Tutorials
- YouTube Channel
Online Help
- Product Online Help
- Log Manager
Software Updates
FAQs

March 2019

Salesforce
SharePoint Server
OKTA SSO
McAfee epo

February 2019

Slack Enterprise Grid
Aruba OS

January 2019

SFTP
Idera SQL Compliance Manager
Bit Defender

McAfee Sidewinder VPN

OverviewResources

Applies To: McAfee Firewall Enterprise (Sidewinder) with VPN 7.X and later.

Overview

With McAfee Firewall Enterprise ( Sidewinder) and its related products, administrators can immediately begin to put firewall rules in the proper business context and take advantage of centralized firewall management, reporting, and user-friendly rule creation capabilities. Additionally, Firewall offers unprecedented levels of threat protection.

EventTracker’s built-in knowledge pack enables you to gather business intelligence providing increased security, performance, availability, and reliability of your systems.Through alerts, knowledge base solutions, and reports, EventTracker helps you to correct the problems long before a disastrous failure occurs.

EventTracker supports McAfee Firewall Enterprise (Sidewinder) with VPN and it can be configured to send syslog to EventTracker Enterprise.

McAfee Firewall Enterprise ( Sidewinder) with VPN Logging

EventTracker Knowledge Pack for McAfee Sidewinder VPN allows you to monitor the following:-

Operations - Syslog messages for different services, account operations (addition, deletion and modification of user and group) and shutdown/restarting of system.
Security - Suspicious network activities, if there is any changes in privileges on user logon/authentication activities (logon, logoff).
Compliance - Changes in policy configuration (addition and deletion).

Previous Next

Once McAfee Sidewinder VPN is configured to deliver events to EventTracker Manager; Knowledge object, dashboards and reports can be configured into EventTracker.

Some of the Knowledge Packs available in EventTracker are listed below. For more information please refer Integration Guide.

Operations

Reports

Mcafee Sidewinder VPN: Tunnel Establishment Attempt - This report provides information related to Tunnel Establishment Attempt which includes Pid, VPN Name, Hostname, Local Gateway, Remote Gateway, Information and other fields.

Compliance

Reports

Mcafee Sidewinder VPN: IKE Authentication Status - This report provides information related to IKE Authentication Status which includes VPN Name, Message ID, Hostname, Local Gateway, Remote Gateway, Remote ID Information and other fields.
Mcafee Sidewinder VPN: IPSec Session Status - This report provides information related to IPSec Session Status which includes Hostname, Eventname, VPN Name, Local Gateway, Remote Gateway, Local Network, Remote Network, Information and other fields.

Scope

The configurations detailed in this guide are consistent with EventTracker Enterprise version 7.X and later,McAfee Firewall Enterprise (Sidewinder) with VPN 7.X and later.

Documentation:

For more information please refer the Integration guide

Need Upgrade?
Need Help?

This site uses cookies to store information on your computer. Some are essential to make our site work; others help us improve the user experience. By using the site, you consent to the placement of these cookies. Read our Privacy Statement to learn more.

I Accept

EventTracker.com

About Netsurion
Leadership
Awards & Recognition
Careers
Articles
Upcoming Events
Press Releases
Partner Portal

Contact us

Toll Free: 877 333 1433
Tel: (+1) 410 953 6776

Support

Toll Free: 877 333 1433 x2
Tel: (+1) 410 953 6776 x2

ECC/EventTracker SIEMphonic Service

Toll Free: 877 333 1433 x3
Tel: (+1) 410 953 6776 x4

Subscribe Now

Stay informed with our monthly newsletter

Privacy
Terms of Use
Sitemap
Contact Us

Solutions

Capabilities

Industries

Knowledge Center

Support

McAfee Sidewinder VPN

Overview

McAfee Firewall Enterprise ( Sidewinder) with VPN Logging

Reports

Reports

Scope

Documentation: