Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Sending packet data to syslog via Deep Security Manager (DSM)

    • Updated:
    • 28 Aug 2019
    • Product/Version:
    • Platform:
    • N/A N/A
Summary

Event forwarding can be configured to either Via the Deep Security Manager or Directly to the Syslog Server.

For Firewall and Intrusion Prevention events, packet data is not stored in the event if the events are sent Via the Deep Security Manager.

Agents should forward logs via the Deep Security Manager

Details
Public

In order to contain packet data in the events, do the following on the Deep Security Manager node:

  1. Change the current directory to the installation directory of Deep Security Manager.
    > cd {Installation Directory of DSM}

    The default installation paths are as follows:

    • Windows: C:\Program Files\Trend Micro\Deep Security Manager\
    • Linux:/opt/dsm/
  2. Run the command below:
    > dsm_c -action changesetting -name com.trendmicro.ds.network:settings.configuration.sendPacketDataViaDSMSyslog -value true

Once the option is enabled, base64-encoded text packet data can be sent to syslog even when Via the Deep Security Manager is configured.

Premium
Internal
Rating:
Category:
Configure
Solution Id:
1123641
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.