Untangle OverviewResources Applies To: Untangle Overview Untangle, a network software and appliance company, provides the most complete multi-function firewall and Internet management application suite available today. EventTracker is an enterprise-class platform that seamlessly combines SIEM, Log Management, File Integrity Monitoring, Machine Analytics and so forth. EventTracker Knowledge Pack for Untangle allows you to monitor the following components: - Spam emails and Threat detection. Application control, Settings changes, WAN failover and Web filter. Login success and Login failure. Previous Next Once Untangle is configured to deliver events to EventTracker Manager; alerts, dashboards and reports can be configured into EventTracker. Some of the Knowledge Packs available in EventTracker are listed below. For more information, please refer Integration Guide. Security Alerts Untangle: Spam emails - This alert will be generated when a spam email is blocked. Untangle: Threat detection - This alert will be generated when a threat is detected by Untangle firewall. Reports Untangle - Threat detection - This report gives the information about all the threats that are detected by Untangle firewall. Untangle - Spam emails - This report gives the information about all the spam emails which are blocked or allowed. Operations Reports Untangle - Application control - This report gives information about all the applications which are blocked or allowed. Untangle - Settings changes - This report gives information about device settings changes. Untangle - WAN failover - This report gives information about all the successful and failed WAN connections. Untangle - Web filter - This report gives information about all the URL filtering that is done. Compliance Alerts Untangle: Login failure - This alert will be generated when the user login failure is attempted. Reports Untangle - Login success - This report gives information about successful user logins. Untangle - Login failure - This report gives information about user login failures. Scope The configurations detailed in this guide are consistent with EventTracker Enterprise version 8.x and later and Untangle. Documentation To configure untangle to send logs to EventTracker, refer the How to Guide. For more information, please refer the Untangle Integration guide.