[{"data":1,"prerenderedAt":1580},["ShallowReactive",2],{"navigation":3,"/en/datacollector/view":411,"/en/datacollector/view-surround":1040},[4,218],{"title":5,"_path":6,"children":7},"En","/en",[8,29,35,67,77,87,105,130,148,155,162,178,190],{"title":9,"_path":10,"children":11},"Getting Started","/en/getting-started",[12,14,17,20,23,26],{"title":13,"_path":10},"Introduction",{"title":15,"_path":16},"Quick Start","/en/getting-started/quickstart",{"title":18,"_path":19},"Installation on Docker Standalone","/en/getting-started/dockerstandalone",{"title":21,"_path":22},"Installation on Docker Swarm","/en/getting-started/dockerswarm",{"title":24,"_path":25},"Installation on Windows","/en/getting-started/windows",{"title":27,"_path":28},"Installation on Linux","/en/getting-started/linux",{"title":30,"_path":31,"children":32},"Dashboard","/en/dashboard",[33],{"title":30,"_path":34},"/en/dashboard/dashboard",{"title":36,"_path":37,"children":38},"Datacollector","/en/datacollector",[39,42,45],{"title":40,"_path":41},"Data View","/en/datacollector/view",{"title":43,"_path":44},"Management","/en/datacollector/management",{"title":46,"_path":47,"children":48},"Vendors","/en/datacollector/vendors",[49,52,55,58,61,64],{"title":50,"_path":51},"Default Syslog Configuration","/en/datacollector/vendors/default",{"title":53,"_path":54},"FortiGate Syslog Configuration","/en/datacollector/vendors/fortigate-syslog",{"title":56,"_path":57},"Palo Alto Syslog Configuration","/en/datacollector/vendors/palo-alto-syslog",{"title":59,"_path":60},"Ruijie Syslog Configuration","/en/datacollector/vendors/ruijie-syslog",{"title":62,"_path":63},"Sophos Syslog Configuration","/en/datacollector/vendors/sophos-syslog",{"title":65,"_path":66},"SonicWall Syslog Configuration","/en/datacollector/vendors/sonicwall-syslog",{"title":68,"_path":69,"children":70},"Reports","/en/reports",[71,74],{"title":72,"_path":73},"Reports Views","/en/reports/view",{"title":75,"_path":76},"Scheduled Reports","/en/reports/scheduled-reports",{"title":78,"_path":79,"children":80},"Alert","/en/alert",[81,84],{"title":82,"_path":83},"Rule Management","/en/alert/rule-management",{"title":85,"_path":86},"Notification Policy","/en/alert/notification-policy",{"title":88,"_path":89,"children":90},"Hotspot","/en/hotspot",[91,93,96,99,102],{"title":13,"_path":92},"/en/hotspot/introduction",{"title":94,"_path":95},"Location","/en/hotspot/locations",{"title":97,"_path":98},"Templates","/en/hotspot/templates",{"title":100,"_path":101},"User Activity","/en/hotspot/user-stats",{"title":103,"_path":104},"Black & White List","/en/hotspot/bw-list",{"title":106,"_path":107,"children":108},"Integrations","/en/integrations",[109,112,115,118,121,124,127],{"title":110,"_path":111},"SMTP Server","/en/integrations/smtp",{"title":113,"_path":114},"SMS Provider","/en/integrations/sms",{"title":116,"_path":117},"PMS Integration","/en/integrations/pms",{"title":119,"_path":120},"LDAP Integration","/en/integrations/ldap",{"title":122,"_path":123},"API Integration","/en/integrations/api",{"title":125,"_path":126},"NTP Server Integration","/en/integrations/ntp",{"title":128,"_path":129},"Timestamp Server Integration","/en/integrations/time-stamp-server",{"title":43,"_path":131,"children":132},"/en/management",[133,136,139,142,145],{"title":134,"_path":135},"Data Management","/en/management/data-management",{"title":137,"_path":138},"Contact Management","/en/management/contact-management",{"title":140,"_path":141},"Object Management","/en/management/object",{"title":143,"_path":144},"Command Line Interface","/en/management/command-line-interface",{"title":146,"_path":147},"Disk Capacity Planning Formula","/en/management/disk-management",{"title":149,"_path":150,"children":151},"License","/en/license",[152],{"title":153,"_path":154},"License & Agents","/en/license/license",{"title":156,"_path":157,"children":158},"User Authentication","/en/user-authentication",[159],{"title":160,"_path":161},"User & Authentication ","/en/user-authentication/user-authentication",{"title":163,"_path":164,"children":165},"System","/en/system",[166,169,172,175],{"title":167,"_path":168},"Administrator Management","/en/system/administrator",{"title":170,"_path":171},"Feature Visibility","/en/system/features-visibility",{"title":173,"_path":174},"Update","/en/system/update",{"title":176,"_path":177},"System Settings","/en/system/settings",{"title":179,"_path":180,"children":181},"Practice","/en/practice",[182,185,187],{"title":183,"_path":184},"Top Bantwidth Usage","/en/practice/topbantwidthusage",{"title":183,"_path":186},"/en/practice/most-visited-websites",{"title":188,"_path":189},"Inspect Blocked Traffic","/en/practice/inspect-blocked-traffic",{"title":191,"_path":192,"children":193},"Blog","/en/blog",[194,197,200,203,206,209,212,215],{"title":195,"_path":196},"Load Balance Configuration with Docker Swarm","/en/blog/load-balance-config",{"title":198,"_path":199},"Getting Started with the AI Module","/en/blog/ai-module",{"title":201,"_path":202},"How To Config Fortigate Syslog","/en/blog/how-to-config-fortigate-syslog",{"title":204,"_path":205},"How To Config Paloalto Syslog","/en/blog/how-to-config-paloalto-syslog",{"title":207,"_path":208},"How To Config Sophos Syslog","/en/blog/how-to-config-sophos-syslog",{"title":210,"_path":211},"Installing MinIO on Linux Server","/en/blog/minio-install",{"title":213,"_path":214},"Docker Desktop On Windows","/en/blog/docker-desktop-on-windows",{"title":216,"_path":217},"Installing Docker on Ubuntu Server","/en/blog/docker-on-ubuntu-server",{"title":219,"_path":220,"children":221},"Tr","/tr",[222,242,247,275,284,293,310,333,350,356,361,375,387],{"title":223,"_path":224,"children":225},"Giriş","/tr/getting-started",[226,227,230,233,236,239],{"title":223,"_path":224},{"title":228,"_path":229},"Hızlı Başlangıç","/tr/getting-started/quickstart",{"title":231,"_path":232},"Docker Standalone Üzerine Kurulum","/tr/getting-started/dockerstandalone",{"title":234,"_path":235},"Docker Swarm Üzerinde Kurulum","/tr/getting-started/dockerswarm",{"title":237,"_path":238},"Windows'ta Kurulum","/tr/getting-started/windows",{"title":240,"_path":241},"Linux'ta Kurulum","/tr/getting-started/linux",{"title":30,"_path":243,"children":244},"/tr/dashboard",[245],{"title":30,"_path":246},"/tr/dashboard/dashboard",{"title":36,"_path":248,"children":249},"/tr/datacollector",[250,252,254],{"title":40,"_path":251},"/tr/datacollector/view",{"title":43,"_path":253},"/tr/datacollector/management",{"title":46,"_path":255,"children":256},"/tr/datacollector/vendors",[257,260,263,266,269,272],{"title":258,"_path":259},"Varsayılan Syslog Yapılandırması","/tr/datacollector/vendors/default",{"title":261,"_path":262},"FortiGate Syslog Yapılandırması","/tr/datacollector/vendors/fortigate-syslog",{"title":264,"_path":265},"Palo Alto Syslog Yapılandırması","/tr/datacollector/vendors/palo-alto-syslog",{"title":267,"_path":268},"Ruijie Syslog Yapılandırması","/tr/datacollector/vendors/ruijie-syslog",{"title":270,"_path":271},"Sophos Syslog Yapılandırması","/tr/datacollector/vendors/sophos-syslog",{"title":273,"_path":274},"SonicWall Syslog Yapılandırması","/tr/datacollector/vendors/sonicwall-syslog",{"title":68,"_path":276,"children":277},"/tr/reports",[278,281],{"title":279,"_path":280},"Rapor Görünümleri","/tr/reports/view",{"title":282,"_path":283},"Planlanmış Raporlar","/tr/reports/scheduled-reports",{"title":78,"_path":285,"children":286},"/tr/alert",[287,290],{"title":288,"_path":289},"Kural Yönetimi","/tr/alert/rule-management",{"title":291,"_path":292},"Bildirim Politikası","/tr/alert/notification-policy",{"title":88,"_path":294,"children":295},"/tr/hotspot",[296,298,301,304,307],{"title":223,"_path":297},"/tr/hotspot/introduction",{"title":299,"_path":300},"Konum","/tr/hotspot/locations",{"title":302,"_path":303},"Şablonlar","/tr/hotspot/templates",{"title":305,"_path":306},"Kullanıcı Etkinliği","/tr/hotspot/user-stats",{"title":308,"_path":309},"Kara ve Beyaz Liste","/tr/hotspot/bw-list",{"title":106,"_path":311,"children":312},"/tr/integrations",[313,315,318,321,324,327,330],{"title":110,"_path":314},"/tr/integrations/smtp",{"title":316,"_path":317},"SMS Sağlayıcı","/tr/integrations/sms",{"title":319,"_path":320},"Pms","/tr/integrations/pms",{"title":322,"_path":323},"LDAP Entegrasyonu","/tr/integrations/ldap",{"title":325,"_path":326},"API Entegrasyonu","/tr/integrations/api",{"title":328,"_path":329},"NTP Sunucu Entegrasyonu","/tr/integrations/ntp",{"title":331,"_path":332},"Zaman Damgası Sunucusu Entegrasyonu","/tr/integrations/time-stamp-server",{"title":43,"_path":334,"children":335},"/tr/management",[336,339,342,345,347],{"title":337,"_path":338},"Veri Yönetimi","/tr/management/data-management",{"title":340,"_path":341},"İletişim Yönetimi","/tr/management/contact-management",{"title":343,"_path":344},"Nesne Yönetimi","/tr/management/object",{"title":143,"_path":346},"/tr/management/command-line-interface",{"title":348,"_path":349},"Disk Kapasite Planlama Formülü","/tr/management/disk-management",{"title":149,"_path":351,"children":352},"/tr/license",[353],{"title":354,"_path":355},"Lisans ve Ajanlar","/tr/license/license",{"title":156,"_path":357,"children":358},"/tr/user-authentication",[359],{"title":156,"_path":360},"/tr/user-authentication/user-authentication",{"title":163,"_path":362,"children":363},"/tr/system",[364,367,370,372],{"title":365,"_path":366},"Yönetici Yönetimi","/tr/system/administrator",{"title":368,"_path":369},"Özellik Görünürlüğü","/tr/system/features-visibility",{"title":173,"_path":371},"/tr/system/update",{"title":373,"_path":374},"Sistem Ayarları","/tr/system/settings",{"title":179,"_path":376,"children":377},"/tr/practice",[378,381,384],{"title":379,"_path":380},"En Yüksek Bandwidth Kullanımı","/tr/practice/topbantwidthusage",{"title":382,"_path":383},"Top Bandwidth Kullanımı","/tr/practice/most-visited-websites",{"title":385,"_path":386},"Engellenen Trafiği İncele","/tr/practice/inspect-blocked-traffic",{"title":191,"_path":388,"children":389},"/tr/blog",[390,393,396,398,400,402,405,408],{"title":391,"_path":392},"Docker Swarm ile Yük Deneleme Yapılandırması","/tr/blog/load-balance-config",{"title":394,"_path":395},"AI Modülü ile Başlarken","/tr/blog/ai-module",{"title":201,"_path":397},"/tr/blog/how-to-config-fortigate-syslog",{"title":204,"_path":399},"/tr/blog/how-to-config-paloalto-syslog",{"title":207,"_path":401},"/tr/blog/how-to-config-sophos-syslog",{"title":403,"_path":404},"Minio Install","/tr/blog/minio-install",{"title":406,"_path":407},"Windows'ta Docker Desktop","/tr/blog/docker-desktop-on-windows",{"title":409,"_path":410},"Ubuntu Server'da Docker Kurulumu","/tr/blog/docker-on-ubuntu-server",{"_path":41,"_dir":412,"_draft":413,"_partial":413,"_locale":414,"title":40,"description":415,"body":416,"_type":1034,"_id":1035,"_source":1036,"_file":1037,"_stem":1038,"_extension":1039},"datacollector",false,"","The View page is the page where you can follow the log records from your data source live. On this page, you can see and filter your current and past log records.",{"type":417,"children":418,"toc":1015},"root",[419,428,434,439,445,450,457,493,546,559,565,570,576,581,587,612,618,623,629,634,640,645,738],{"type":420,"tag":421,"props":422,"children":424},"element","h2",{"id":423},"what-is-data-view-️",[425],{"type":426,"value":427},"text","What Is Data View ? 🤷‍♂️",{"type":420,"tag":429,"props":430,"children":431},"p",{},[432],{"type":426,"value":433},"On the Data View page, you can access all types of logs received from your security device. This interface allows both real-time and historical search and filtering across all log types.",{"type":420,"tag":429,"props":435,"children":436},{},[437],{"type":426,"value":438},"To view a specific log type, the corresponding traffic must first be detected and logged by your security device. For instance, if you want to determine how many hours a user working remotely via VPN was connected on a given day, VPN traffic logging must be enabled on your security device.",{"type":420,"tag":421,"props":440,"children":442},{"id":441},"manage-data-view",[443],{"type":426,"value":444},"Manage Data View 👨‍💼",{"type":420,"tag":429,"props":446,"children":447},{},[448],{"type":426,"value":449},"After logging in to the Logger Web UI, the Default View page welcomes you. On this page you can add a new Workspace, edit, delete and clone existing ones. The Workspace designs you create appear in the Workspaces section in the left menu.",{"type":420,"tag":451,"props":452,"children":454},"h3",{"id":453},"filters",[455],{"type":426,"value":456},"Filters 🔡",{"type":420,"tag":458,"props":459,"children":460},"ul",{},[461,473,483],{"type":420,"tag":462,"props":463,"children":464},"li",{},[465,471],{"type":420,"tag":466,"props":467,"children":468},"strong",{},[469],{"type":426,"value":470},"Source:",{"type":426,"value":472}," Select the data sources you are adding here.",{"type":420,"tag":462,"props":474,"children":475},{},[476,481],{"type":420,"tag":466,"props":477,"children":478},{},[479],{"type":426,"value":480},"Type:",{"type":426,"value":482}," The log types sent appear here. Select the log type you want to review. Log types are directly proportional to the security settings and configuration of your device. For example; when you want to examine the web log, your security device needs to capture this web traffic beforehand.",{"type":420,"tag":462,"props":484,"children":485},{},[486,491],{"type":420,"tag":466,"props":487,"children":488},{},[489],{"type":426,"value":490},"Column:",{"type":426,"value":492}," Your device sends many log columns. Log columns can contain a lot of data. By default there are 11 log columns. You can add or remove these log columns. After adding and removing columns, the DataView table will take shape. Log columns will vary according to the brand of your device. You can examine what the column names mean in the documents on the official website of the device brand.",{"type":420,"tag":494,"props":495,"children":497},"callout",{"icon":496},"i-heroicons-document-text",[498],{"type":420,"tag":429,"props":499,"children":500},{},[501,503,507,509,517,519,522,524,530,531,534,536,542,543],{"type":426,"value":502},"In the following section, you can access the log field description documents of some brands;",{"type":420,"tag":504,"props":505,"children":506},"br",{},[],{"type":426,"value":508},"\nFortigate: ",{"type":420,"tag":510,"props":511,"children":514},"a",{"href":512,"target":513},"https://docs.fortinet.com/document/fortigate/7.6.3/fortios-log-message-reference/357866/log-message-fields","Blank",[515],{"type":426,"value":516},"docs.fortinet.com...",{"type":426,"value":518}," ",{"type":420,"tag":504,"props":520,"children":521},{},[],{"type":426,"value":523},"\nSophos: ",{"type":420,"tag":510,"props":525,"children":527},{"href":526,"target":513},"https://docs.sophos.com/nsg/sophos-firewall/19.5/PDF/SF-syslog-guide-19.5.pdf",[528],{"type":426,"value":529},"docs.sophos.com...",{"type":426,"value":518},{"type":420,"tag":504,"props":532,"children":533},{},[],{"type":426,"value":535},"\nPalo Alto: ",{"type":420,"tag":510,"props":537,"children":539},{"href":538,"target":513},"https://docs.paloaltonetworks.com/pan-os/10-2/pan-os-admin/monitoring/use-syslog-for-monitoring/syslog-field-descriptions",[540],{"type":426,"value":541},"docs.paloaltonetworks.com...",{"type":426,"value":518},{"type":420,"tag":504,"props":544,"children":545},{},[],{"type":420,"tag":458,"props":547,"children":548},{},[549],{"type":420,"tag":462,"props":550,"children":551},{},[552,557],{"type":420,"tag":466,"props":553,"children":554},{},[555],{"type":426,"value":556},"Aggregate:",{"type":426,"value":558}," The Aggregate operation sums the values of the columns you have selected and groups the fields. You can see the result of this operation in the DataView table.",{"type":420,"tag":451,"props":560,"children":562},{"id":561},"tab",[563],{"type":426,"value":564},"Tab 📑",{"type":420,"tag":429,"props":566,"children":567},{},[568],{"type":426,"value":569},"You can search multiple logs at the same time in separate tabs.",{"type":420,"tag":451,"props":571,"children":573},{"id":572},"search-in-two-date-ranges-️",[574],{"type":426,"value":575},"Search In Two Date Ranges ↔️",{"type":420,"tag":429,"props":577,"children":578},{},[579],{"type":426,"value":580},"Specifically shows the data between the two dates you selected.",{"type":420,"tag":451,"props":582,"children":584},{"id":583},"date-filtering-️",[585],{"type":426,"value":586},"Date Filtering 🗓️",{"type":420,"tag":429,"props":588,"children":589},{},[590,592,597,599,604,605,610],{"type":426,"value":591},"You can search for logs between two dates using the Start date and End date properties. You can also use predefined time intervals such as ",{"type":420,"tag":466,"props":593,"children":594},{},[595],{"type":426,"value":596},"Today so far",{"type":426,"value":598},", ",{"type":420,"tag":466,"props":600,"children":601},{},[602],{"type":426,"value":603},"This Week",{"type":426,"value":598},{"type":420,"tag":466,"props":606,"children":607},{},[608],{"type":426,"value":609},"This Year",{"type":426,"value":611},".",{"type":420,"tag":451,"props":613,"children":615},{"id":614},"time-filtering-️",[616],{"type":426,"value":617},"Time Filtering 🕰️",{"type":420,"tag":429,"props":619,"children":620},{},[621],{"type":426,"value":622},"Using the top bar you can add filters based on hours and seconds. This way you can see all the data in a given time range. Click and drag the mouse to use the top bar.",{"type":420,"tag":451,"props":624,"children":626},{"id":625},"live",[627],{"type":426,"value":628},"Live 🔄",{"type":420,"tag":429,"props":630,"children":631},{},[632],{"type":426,"value":633},"You can review instant logs by activating the Live option.",{"type":420,"tag":451,"props":635,"children":637},{"id":636},"log-filter-types",[638],{"type":426,"value":639},"Log Filter Types 🔡",{"type":420,"tag":429,"props":641,"children":642},{},[643],{"type":426,"value":644},"You can search all log columns and use log filters. Examples of the use of some of these are as follows;",{"type":420,"tag":458,"props":646,"children":647},{},[648,658,668,678,688,698,708,718,728],{"type":420,"tag":462,"props":649,"children":650},{},[651,656],{"type":420,"tag":466,"props":652,"children":653},{},[654],{"type":426,"value":655},"No Filter:",{"type":426,"value":657}," Shows all records without any filtering applied.",{"type":420,"tag":462,"props":659,"children":660},{},[661,666],{"type":420,"tag":466,"props":662,"children":663},{},[664],{"type":426,"value":665},"Contains:",{"type":426,"value":667}," Displays records that include the specified text.",{"type":420,"tag":462,"props":669,"children":670},{},[671,676],{"type":420,"tag":466,"props":672,"children":673},{},[674],{"type":426,"value":675},"Not Contains:",{"type":426,"value":677}," Shows records that don't include the specified text.",{"type":420,"tag":462,"props":679,"children":680},{},[681,686],{"type":420,"tag":466,"props":682,"children":683},{},[684],{"type":426,"value":685},"Equal:",{"type":426,"value":687}," Displays records that exactly match the specified value.",{"type":420,"tag":462,"props":689,"children":690},{},[691,696],{"type":420,"tag":466,"props":692,"children":693},{},[694],{"type":426,"value":695},"Not Equal:",{"type":426,"value":697}," Shows records that don't match the specified value.",{"type":420,"tag":462,"props":699,"children":700},{},[701,706],{"type":420,"tag":466,"props":702,"children":703},{},[704],{"type":426,"value":705},"Starts With:",{"type":426,"value":707}," Displays records beginning with the specified text.",{"type":420,"tag":462,"props":709,"children":710},{},[711,716],{"type":420,"tag":466,"props":712,"children":713},{},[714],{"type":426,"value":715},"End With:",{"type":426,"value":717}," Shows records ending with the specified text.",{"type":420,"tag":462,"props":719,"children":720},{},[721,726],{"type":420,"tag":466,"props":722,"children":723},{},[724],{"type":426,"value":725},"Is Null:",{"type":426,"value":727}," Displays records where the field is empty/null.",{"type":420,"tag":462,"props":729,"children":730},{},[731,736],{"type":420,"tag":466,"props":732,"children":733},{},[734],{"type":426,"value":735},"IsNot Null:",{"type":426,"value":737}," Shows records where the field has a value/is not null.",{"type":420,"tag":739,"props":740,"children":744},"u-card",{"className":741},[742,743],"mt-4:bg-gray-100","dark:bg-gray-800",[745,751,766,772,777,815,830,836,841,912,918,923],{"type":420,"tag":421,"props":746,"children":748},{"id":747},"how-to-use",[749],{"type":426,"value":750},"How To Use ? 🤔",{"type":420,"tag":429,"props":752,"children":753},{},[754,756,764],{"type":426,"value":755},"Go to ",{"type":420,"tag":757,"props":758,"children":761},"u-badge",{"color":759,"variant":760},"primary","soft",[762],{"type":426,"value":763},"Datacollector > Data View > Default View",{"type":426,"value":765}," to make various edits to the Data View page.",{"type":420,"tag":451,"props":767,"children":769},{"id":768},"add-workspace",[770],{"type":426,"value":771},"Add Workspace ➕",{"type":420,"tag":429,"props":773,"children":774},{},[775],{"type":426,"value":776},"Follow the steps below to add a new Workspace;",{"type":420,"tag":458,"props":778,"children":779},{},[780,792,804],{"type":420,"tag":462,"props":781,"children":782},{},[783,785,790],{"type":426,"value":784},"Click on the ",{"type":420,"tag":757,"props":786,"children":787},{"color":759,"variant":760},[788],{"type":426,"value":789}," three dots ",{"type":426,"value":791}," in the top left corner of the page.",{"type":420,"tag":462,"props":793,"children":794},{},[795,797,802],{"type":426,"value":796},"Then click the ",{"type":420,"tag":757,"props":798,"children":799},{"color":759,"variant":760},[800],{"type":426,"value":801},"Add New Workspace",{"type":426,"value":803}," button.",{"type":420,"tag":462,"props":805,"children":806},{},[807,809,814],{"type":426,"value":808},"Fill in the information on the page that appears and click the ",{"type":420,"tag":757,"props":810,"children":811},{"color":759,"variant":760},[812],{"type":426,"value":813},"Add",{"type":426,"value":803},{"type":420,"tag":494,"props":816,"children":818},{"icon":817},"i-heroicons-information-circle",[819],{"type":420,"tag":429,"props":820,"children":821},{},[822,823,828],{"type":426,"value":784},{"type":420,"tag":757,"props":824,"children":825},{"color":759,"variant":760},[826],{"type":426,"value":827},"three dots",{"type":426,"value":829}," in the top left corner to edit, clone and delete dashboards.",{"type":420,"tag":451,"props":831,"children":833},{"id":832},"data-search-unfilteredsingle-day",[834],{"type":426,"value":835},"Data Search (Unfiltered&Single Day) 🔎",{"type":420,"tag":429,"props":837,"children":838},{},[839],{"type":426,"value":840},"To test data search with filters, follow the steps below;",{"type":420,"tag":458,"props":842,"children":843},{},[844,863,882,893],{"type":420,"tag":462,"props":845,"children":846},{},[847,849,854,856,861],{"type":426,"value":848},"If you want to analyze the logs of a device, select that device in the ",{"type":420,"tag":757,"props":850,"children":851},{"color":759,"variant":760},[852],{"type":426,"value":853},"source",{"type":426,"value":855}," section under the ",{"type":420,"tag":757,"props":857,"children":858},{"color":759,"variant":760},[859],{"type":426,"value":860},"Filters",{"type":426,"value":862}," menu.",{"type":420,"tag":462,"props":864,"children":865},{},[866,868,873,875,880],{"type":426,"value":867},"Select the log ",{"type":420,"tag":757,"props":869,"children":870},{"color":759,"variant":760},[871],{"type":426,"value":872},"type",{"type":426,"value":874}," you want to analyze from the ",{"type":420,"tag":757,"props":876,"children":877},{"color":759,"variant":760},[878],{"type":426,"value":879},"Types",{"type":426,"value":881}," section.",{"type":420,"tag":462,"props":883,"children":884},{},[885,886,891],{"type":426,"value":867},{"type":420,"tag":757,"props":887,"children":888},{"color":759,"variant":760},[889],{"type":426,"value":890},"columns",{"type":426,"value":892}," you want to see in the table or leave them as default.",{"type":420,"tag":462,"props":894,"children":895},{},[896,898,903,905,910],{"type":426,"value":897},"Optionally enable the ",{"type":420,"tag":757,"props":899,"children":900},{"color":759,"variant":760},[901],{"type":426,"value":902},"aggregate",{"type":426,"value":904}," option and then press the ",{"type":420,"tag":757,"props":906,"children":907},{"color":759,"variant":760},[908],{"type":426,"value":909},"search",{"type":426,"value":911}," button in the top right corner.",{"type":420,"tag":451,"props":913,"children":915},{"id":914},"data-search-filteredmany-days",[916],{"type":426,"value":917},"Data Search (Filtered&Many Days) 🔎",{"type":420,"tag":429,"props":919,"children":920},{},[921],{"type":426,"value":922},"The operations we have done so far only return data for one day and do not do any filtering. To filter data for a specific day or to filter and search for data between two dates, follow the steps below;",{"type":420,"tag":458,"props":924,"children":925},{},[926,958,981,1005],{"type":420,"tag":462,"props":927,"children":928},{},[929,931,936,938,943,945,950,952,957],{"type":426,"value":930},"Enter what you want to search for in any ",{"type":420,"tag":757,"props":932,"children":933},{"color":759,"variant":760},[934],{"type":426,"value":935},"column",{"type":426,"value":937}," in the table. ",{"type":420,"tag":466,"props":939,"children":940},{},[941],{"type":426,"value":942},"Ex:",{"type":426,"value":944}," For the ",{"type":420,"tag":757,"props":946,"children":947},{"color":759,"variant":760},[948],{"type":426,"value":949},"srcip",{"type":426,"value":951}," column, enter ",{"type":420,"tag":466,"props":953,"children":954},{},[955],{"type":426,"value":956},"192.168.100.100",{"type":426,"value":611},{"type":420,"tag":462,"props":959,"children":960},{},[961,963,967,969,973,974,979],{"type":426,"value":962},"Then select a ",{"type":420,"tag":757,"props":964,"children":965},{"color":759,"variant":760},[966],{"type":426,"value":935},{"type":426,"value":968}," filter. ",{"type":420,"tag":466,"props":970,"children":971},{},[972],{"type":426,"value":942},{"type":426,"value":518},{"type":420,"tag":466,"props":975,"children":976},{},[977],{"type":426,"value":978},"Equal",{"type":426,"value":980},". This way you can see traffic with source ip address 192.168.100.100.",{"type":420,"tag":462,"props":982,"children":983},{},[984,986,990,992,997,999,1003],{"type":426,"value":985},"Finally, select a specific date from the ",{"type":420,"tag":757,"props":987,"children":988},{"color":759,"variant":760},[989],{"type":426,"value":935},{"type":426,"value":991},"calendar in the top left corner. Or you can search between two dates by selecting ",{"type":420,"tag":466,"props":993,"children":994},{},[995],{"type":426,"value":996},"Custom",{"type":426,"value":998}," from the ",{"type":420,"tag":757,"props":1000,"children":1001},{"color":759,"variant":760},[1002],{"type":426,"value":935},{"type":426,"value":1004},"date filter menu.",{"type":420,"tag":462,"props":1006,"children":1007},{},[1008,1010,1014],{"type":426,"value":1009},"Then then press the ",{"type":420,"tag":757,"props":1011,"children":1012},{"color":759,"variant":760},[1013],{"type":426,"value":909},{"type":426,"value":911},{"title":414,"searchDepth":1016,"depth":1016,"links":1017},2,[1018,1019,1029],{"id":423,"depth":1016,"text":427},{"id":441,"depth":1016,"text":444,"children":1020},[1021,1023,1024,1025,1026,1027,1028],{"id":453,"depth":1022,"text":456},3,{"id":561,"depth":1022,"text":564},{"id":572,"depth":1022,"text":575},{"id":583,"depth":1022,"text":586},{"id":614,"depth":1022,"text":617},{"id":625,"depth":1022,"text":628},{"id":636,"depth":1022,"text":639},{"id":747,"depth":1016,"text":750,"children":1030},[1031,1032,1033],{"id":768,"depth":1022,"text":771},{"id":832,"depth":1022,"text":835},{"id":914,"depth":1022,"text":917},"markdown","content:en:3.datacollector:2.view.md","content","en/3.datacollector/2.view.md","en/3.datacollector/2.view","md",[1041,1268],{"_path":34,"_dir":1042,"_draft":413,"_partial":413,"_locale":414,"title":30,"description":1043,"body":1044,"_type":1034,"_id":1265,"_source":1036,"_file":1266,"_stem":1267,"_extension":1039},"dashboard","On the Dashboard page, you can add many objects such as real-time system resource monitoring, bandwidth monitoring, threat level monitoring.",{"type":417,"children":1045,"toc":1256},[1046,1052,1057,1063,1068,1121],{"type":420,"tag":421,"props":1047,"children":1049},{"id":1048},"manage-dashboard",[1050],{"type":426,"value":1051},"Manage Dashboard 🏠",{"type":420,"tag":429,"props":1053,"children":1054},{},[1055],{"type":426,"value":1056},"You can customize the Dashboard page and add new widgets.",{"type":420,"tag":451,"props":1058,"children":1060},{"id":1059},"widget-types",[1061],{"type":426,"value":1062},"Widget Types 📱",{"type":420,"tag":429,"props":1064,"children":1065},{},[1066],{"type":426,"value":1067},"Dashboard page visualizes many objects with various graphics. Visualization is done using widgets. Widgets are listed under 5 categories;",{"type":420,"tag":458,"props":1069,"children":1070},{},[1071,1081,1091,1101,1111],{"type":420,"tag":462,"props":1072,"children":1073},{},[1074,1079],{"type":420,"tag":466,"props":1075,"children":1076},{},[1077],{"type":426,"value":1078},"Counters:",{"type":426,"value":1080}," Shows real-time session rates during the selected time period.",{"type":420,"tag":462,"props":1082,"children":1083},{},[1084,1089],{"type":420,"tag":466,"props":1085,"children":1086},{},[1087],{"type":426,"value":1088},"Network:",{"type":426,"value":1090}," The selected time period shows real-time bandwidth utilization.",{"type":420,"tag":462,"props":1092,"children":1093},{},[1094,1099],{"type":420,"tag":466,"props":1095,"children":1096},{},[1097],{"type":426,"value":1098},"Mobile:",{"type":426,"value":1100}," Threat protection statistics, including the number of scanned files and how many scanned files there are for each threat level.",{"type":420,"tag":462,"props":1102,"children":1103},{},[1104,1109],{"type":420,"tag":466,"props":1105,"children":1106},{},[1107],{"type":426,"value":1108},"System:",{"type":426,"value":1110}," Shows real-time system resource utilization data.",{"type":420,"tag":462,"props":1112,"children":1113},{},[1114,1119],{"type":420,"tag":466,"props":1115,"children":1116},{},[1117],{"type":426,"value":1118},"Development:",{"type":426,"value":1120}," Development test widget for experimenting with new features",{"type":420,"tag":739,"props":1122,"children":1124},{"className":1123},[742,743],[1125,1129,1140,1146,1151,1183,1195,1201,1206,1241],{"type":420,"tag":421,"props":1126,"children":1127},{"id":747},[1128],{"type":426,"value":750},{"type":420,"tag":429,"props":1130,"children":1131},{},[1132,1133,1138],{"type":426,"value":755},{"type":420,"tag":757,"props":1134,"children":1135},{"color":759,"variant":760},[1136],{"type":426,"value":1137},"Dashboard > Default",{"type":426,"value":1139}," to make various edits to the Dashboard page.",{"type":420,"tag":451,"props":1141,"children":1143},{"id":1142},"add-dashboard",[1144],{"type":426,"value":1145},"Add Dashboard ➕",{"type":420,"tag":429,"props":1147,"children":1148},{},[1149],{"type":426,"value":1150},"Follow the steps below to add a new customized dashboard page;",{"type":420,"tag":458,"props":1152,"children":1153},{},[1154,1164,1174],{"type":420,"tag":462,"props":1155,"children":1156},{},[1157,1158,1162],{"type":426,"value":784},{"type":420,"tag":757,"props":1159,"children":1160},{"color":759,"variant":760},[1161],{"type":426,"value":827},{"type":426,"value":1163}," in the top left corner.",{"type":420,"tag":462,"props":1165,"children":1166},{},[1167,1168,1173],{"type":426,"value":796},{"type":420,"tag":757,"props":1169,"children":1170},{"color":759,"variant":760},[1171],{"type":426,"value":1172},"Add New Dashboard",{"type":426,"value":803},{"type":420,"tag":462,"props":1175,"children":1176},{},[1177,1178,1182],{"type":426,"value":808},{"type":420,"tag":757,"props":1179,"children":1180},{"color":759,"variant":760},[1181],{"type":426,"value":813},{"type":426,"value":803},{"type":420,"tag":494,"props":1184,"children":1185},{"icon":817},[1186],{"type":420,"tag":429,"props":1187,"children":1188},{},[1189,1190,1194],{"type":426,"value":784},{"type":420,"tag":757,"props":1191,"children":1192},{"color":759,"variant":760},[1193],{"type":426,"value":827},{"type":426,"value":829},{"type":420,"tag":451,"props":1196,"children":1198},{"id":1197},"add-widget",[1199],{"type":426,"value":1200},"Add Widget ➕",{"type":420,"tag":429,"props":1202,"children":1203},{},[1204],{"type":426,"value":1205},"Follow the steps below to add a new widget;",{"type":420,"tag":458,"props":1207,"children":1208},{},[1209,1220,1231],{"type":420,"tag":462,"props":1210,"children":1211},{},[1212,1214,1219],{"type":426,"value":1213},"Click the ",{"type":420,"tag":757,"props":1215,"children":1216},{"color":759,"variant":760},[1217],{"type":426,"value":1218},"Add Widget",{"type":426,"value":911},{"type":420,"tag":462,"props":1221,"children":1222},{},[1223,1225,1230],{"type":426,"value":1224},"Select the type of widget you want to add from the ",{"type":420,"tag":757,"props":1226,"children":1227},{"color":759,"variant":760},[1228],{"type":426,"value":1229},"drop-down",{"type":426,"value":862},{"type":420,"tag":462,"props":1232,"children":1233},{},[1234,1236,1240],{"type":426,"value":1235},"Depending on the type of widget you choose, you will be asked for various parameters such as Protocol, Port, Data Source, Color. Enter these parameters and click the ",{"type":420,"tag":757,"props":1237,"children":1238},{"color":759,"variant":760},[1239],{"type":426,"value":813},{"type":426,"value":803},{"type":420,"tag":494,"props":1242,"children":1243},{"icon":817},[1244],{"type":420,"tag":429,"props":1245,"children":1246},{},[1247,1249,1254],{"type":426,"value":1248},"To edit and delete widgets, activate ",{"type":420,"tag":757,"props":1250,"children":1251},{"color":759,"variant":760},[1252],{"type":426,"value":1253},"Edit Mode",{"type":426,"value":1255}," in the upper right corner.",{"title":414,"searchDepth":1016,"depth":1016,"links":1257},[1258,1261],{"id":1048,"depth":1016,"text":1051,"children":1259},[1260],{"id":1059,"depth":1022,"text":1062},{"id":747,"depth":1016,"text":750,"children":1262},[1263,1264],{"id":1142,"depth":1022,"text":1145},{"id":1197,"depth":1022,"text":1200},"content:en:2.dashboard:1.dashboard.md","en/2.dashboard/1.dashboard.md","en/2.dashboard/1.dashboard",{"_path":44,"_dir":412,"_draft":413,"_partial":413,"_locale":414,"title":43,"description":1269,"body":1270,"_type":1034,"_id":1577,"_source":1036,"_file":1578,"_stem":1579,"_extension":1039},"This topic provides information on how to add a data source to the Logger software.",{"type":417,"children":1271,"toc":1567},[1272,1278,1288,1294,1311,1317,1333],{"type":420,"tag":421,"props":1273,"children":1275},{"id":1274},"sources-ℹ️",[1276],{"type":426,"value":1277},"Sources ℹ️",{"type":420,"tag":429,"props":1279,"children":1280},{},[1281,1283],{"type":426,"value":1282},"Sources are fundamental components that define the data collection points of the SIEM system and are essential resources that must be added for the dataview page to function properly. A source can be any device you want to integrate into your SIEM product, including network devices such as firewalls and switches, or client machines with installed agents. Various methods can be used to send logs from these devices to the SIEM software: the most common Syslog protocol can be used over 514/UDP or 514/TCP ports, API-based integrations can be implemented, or data transfer can be provided through the agent's own dedicated port and protocol.\nTo add a Data Source, see ",{"type":420,"tag":757,"props":1284,"children":1285},{"color":759,"variant":760},[1286],{"type":426,"value":1287},"How to Use.",{"type":420,"tag":421,"props":1289,"children":1291},{"id":1290},"internal-logs-️",[1292],{"type":426,"value":1293},"Internal Logs 👨‍⚕️",{"type":420,"tag":429,"props":1295,"children":1296},{},[1297,1299,1304,1306],{"type":426,"value":1298},"Unlike traffic logs, internal logs provide detailed information about the state of the container system on which the logger software is running. They also provide visibility into event logs generated by the logger software itself. As with all log types, features such as date-based filtering and column customization are available here. Filtering and column customization is described in detail in the ",{"type":420,"tag":510,"props":1300,"children":1302},{"href":1301,"target":513},"en/datacollector/view",[1303],{"type":426,"value":40},{"type":426,"value":1305}," manual. To access Internal Logs, go to ",{"type":420,"tag":757,"props":1307,"children":1308},{"color":759,"variant":760},[1309],{"type":426,"value":1310},"DataView > Administration > Internal Logs",{"type":420,"tag":421,"props":1312,"children":1314},{"id":1313},"audit-logs-️️",[1315],{"type":426,"value":1316},"Audit Logs 🕵️‍♀️",{"type":420,"tag":429,"props":1318,"children":1319},{},[1320,1322,1326,1328],{"type":426,"value":1321},"Audit logs display user activity on the logger software. They provide detailed records of events such as login and logout actions, as well as object modifications, deletions, and additions within the system. As with all log types, features like date filtering and column customization are available. Filtering and column customization is described in detail in the ",{"type":420,"tag":510,"props":1323,"children":1324},{"href":1301,"target":513},[1325],{"type":426,"value":40},{"type":426,"value":1327}," manual.\nTo access audit logs, ",{"type":420,"tag":757,"props":1329,"children":1330},{"color":759,"variant":760},[1331],{"type":426,"value":1332},"DataView > Management > Audit Logs",{"type":420,"tag":739,"props":1334,"children":1336},{"className":1335},[742,743],[1337,1341,1346,1352,1357,1398,1404,1414,1454,1524,1530,1541],{"type":420,"tag":421,"props":1338,"children":1339},{"id":747},[1340],{"type":426,"value":750},{"type":420,"tag":1342,"props":1343,"children":1345},"doc-navigation",{":items":1344},"[{\"date\":\"1\",\"title\":\"Send Log Data\",\"description\":\"Forward log to Logger\",\"icon\":\"i-heroicons-paper-airplane\",\"completed\":true},{\"date\":\"2\",\"title\":\"Create New Source\",\"description\":\"Select your vendor and then select your Data Source\",\"icon\":\"i-heroicons-plus-circle\",\"completed\":true},{\"date\":\"3\",\"title\":\"Verify Live Data Flow\",\"description\":\"Make sure you get a log from your device\",\"icon\":\"i-heroicons-check-badge\",\"completed\":true}]",[],{"type":420,"tag":451,"props":1347,"children":1349},{"id":1348},"send-log-data",[1350],{"type":426,"value":1351},"Send Log Data",{"type":420,"tag":429,"props":1353,"children":1354},{},[1355],{"type":426,"value":1356},"Log sending procedures may differ depending on the device brand. Below you can find log submission guides for common security devices. If it is not available on our blog page, you can go to the official website of the device brand and browse the support documents.",{"type":420,"tag":494,"props":1358,"children":1359},{"icon":496},[1360],{"type":420,"tag":429,"props":1361,"children":1362},{},[1363,1365,1368,1369,1374,1375,1378,1379,1384,1385,1388,1389,1394,1395],{"type":426,"value":1364},"In the section below, you can access the blog posts of log submission processes of some brands;",{"type":420,"tag":504,"props":1366,"children":1367},{},[],{"type":426,"value":508},{"type":420,"tag":510,"props":1370,"children":1371},{"href":202,"target":513},[1372],{"type":426,"value":1373},"blog/how-to-config-fortigate...",{"type":426,"value":518},{"type":420,"tag":504,"props":1376,"children":1377},{},[],{"type":426,"value":523},{"type":420,"tag":510,"props":1380,"children":1381},{"href":208,"target":513},[1382],{"type":426,"value":1383},"blog/how-to-config-sophos...",{"type":426,"value":518},{"type":420,"tag":504,"props":1386,"children":1387},{},[],{"type":426,"value":535},{"type":420,"tag":510,"props":1390,"children":1391},{"href":205,"target":513},[1392],{"type":426,"value":1393},"blog/how-to-config-paloalto...",{"type":426,"value":518},{"type":420,"tag":504,"props":1396,"children":1397},{},[],{"type":420,"tag":451,"props":1399,"children":1401},{"id":1400},"create-new-source",[1402],{"type":426,"value":1403},"Create New Source",{"type":420,"tag":429,"props":1405,"children":1406},{},[1407,1409],{"type":426,"value":1408},"Navigate to ",{"type":420,"tag":757,"props":1410,"children":1411},{"color":759,"variant":760},[1412],{"type":426,"value":1413},"Datacollector > Management > Sources",{"type":420,"tag":458,"props":1415,"children":1416},{},[1417,1428,1438],{"type":420,"tag":462,"props":1418,"children":1419},{},[1420,1421,1426],{"type":426,"value":1213},{"type":420,"tag":757,"props":1422,"children":1423},{"color":759,"variant":760},[1424],{"type":426,"value":1425},"Create New",{"type":426,"value":1427}," button",{"type":420,"tag":462,"props":1429,"children":1430},{},[1431,1433],{"type":426,"value":1432},"Select your ",{"type":420,"tag":757,"props":1434,"children":1435},{"color":759,"variant":760},[1436],{"type":426,"value":1437},"Vendor",{"type":420,"tag":462,"props":1439,"children":1440},{},[1441,1442,1447,1449,1453],{"type":426,"value":1432},{"type":420,"tag":757,"props":1443,"children":1444},{"color":759,"variant":760},[1445],{"type":426,"value":1446},"Data Source",{"type":426,"value":1448}," then click ",{"type":420,"tag":757,"props":1450,"children":1451},{"color":759,"variant":760},[1452],{"type":426,"value":813},{"type":426,"value":803},{"type":420,"tag":494,"props":1455,"children":1456},{"icon":817},[1457],{"type":420,"tag":458,"props":1458,"children":1459},{},[1460,1488],{"type":420,"tag":462,"props":1461,"children":1462},{},[1463,1465,1471,1473,1478,1480,1485],{"type":426,"value":1464},"You can ",{"type":420,"tag":1466,"props":1467,"children":1468},"em",{},[1469],{"type":426,"value":1470},"edit",{"type":426,"value":1472}," and ",{"type":420,"tag":1466,"props":1474,"children":1475},{},[1476],{"type":426,"value":1477},"delete",{"type":426,"value":1479}," data sources with the buttons in the ",{"type":420,"tag":757,"props":1481,"children":1482},{"color":759,"variant":760},[1483],{"type":426,"value":1484},"upper left corner.",{"type":420,"tag":504,"props":1486,"children":1487},{},[],{"type":420,"tag":462,"props":1489,"children":1490},{},[1491,1493,1498,1500,1505,1506,1511,1512,1517,1518,1523],{"type":426,"value":1492},"In the ",{"type":420,"tag":757,"props":1494,"children":1495},{"color":759,"variant":760},[1496],{"type":426,"value":1497},"Action",{"type":426,"value":1499}," section on the right side of the data sources, you can perform ",{"type":420,"tag":1466,"props":1501,"children":1502},{},[1503],{"type":426,"value":1504},"user authorization",{"type":426,"value":598},{"type":420,"tag":1466,"props":1507,"children":1508},{},[1509],{"type":426,"value":1510},"editing",{"type":426,"value":598},{"type":420,"tag":1466,"props":1513,"children":1514},{},[1515],{"type":426,"value":1516},"license activation",{"type":426,"value":1472},{"type":420,"tag":1466,"props":1519,"children":1520},{},[1521],{"type":426,"value":1522},"deletion",{"type":426,"value":611},{"type":420,"tag":451,"props":1525,"children":1527},{"id":1526},"verify-live-data-flow",[1528],{"type":426,"value":1529},"Verify Live Data Flow",{"type":420,"tag":429,"props":1531,"children":1532},{},[1533,1534,1539],{"type":426,"value":755},{"type":420,"tag":757,"props":1535,"children":1536},{"color":759,"variant":760},[1537],{"type":426,"value":1538},"Data View > Default View",{"type":426,"value":1540}," page.",{"type":420,"tag":458,"props":1542,"children":1543},{},[1544,1562],{"type":420,"tag":462,"props":1545,"children":1546},{},[1547,1549,1554,1556,1560],{"type":426,"value":1548},"Click on ",{"type":420,"tag":757,"props":1550,"children":1551},{"color":759,"variant":760},[1552],{"type":426,"value":1553}," Data View ",{"type":426,"value":1555}," Sources under the ",{"type":420,"tag":757,"props":1557,"children":1558},{"color":759,"variant":760},[1559],{"type":426,"value":40},{"type":426,"value":1561}," Filters menu and select your registered source.",{"type":420,"tag":462,"props":1563,"children":1564},{},[1565],{"type":426,"value":1566},"If you can see the live log stream after this process, the process has been completed successfully.",{"title":414,"searchDepth":1016,"depth":1016,"links":1568},[1569,1570,1571,1572],{"id":1274,"depth":1016,"text":1277},{"id":1290,"depth":1016,"text":1293},{"id":1313,"depth":1016,"text":1316},{"id":747,"depth":1016,"text":750,"children":1573},[1574,1575,1576],{"id":1348,"depth":1022,"text":1351},{"id":1400,"depth":1022,"text":1403},{"id":1526,"depth":1022,"text":1529},"content:en:3.datacollector:3.management.md","en/3.datacollector/3.management.md","en/3.datacollector/3.management",1775654251490]