Buy or Renew
Buy or Renew
Cisco DNA Center is now Catalyst Center. New name, same great product. Learn more about Catalyst Center here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
949
Views
5
Helpful
1
Replies

How to send logs from DNA to LogRythm

JON SHORTEN
Level 1
Level 1

‎08-26-2021 04:27 AM

We have a customer implementing DNA (not SD-Access yet), that want to get log information into their existing LogRythm SIEM; I'm struggling to find any information on a mutually supported protocol to make this work.

 

Posting in case anyone has found a solution previously?

 

tia

1 person had this problem
Labels:
0 Helpful
1 Reply 1

Preston Chilcote
Cisco Employee
Cisco Employee

‎08-26-2021 12:29 PM

I'm not sure what type of logs you are referring to, so I'll answer this in two ways.

 

For syslogs, you can simply have 2 syslog servers defined on each network device.  One pointing to Cisco DNA, the other to LogRythm.

 

More generically, there are APIs you can take advantage of to pull all sorts of information from Cisco DNA.  For example, some folks put together a way to collect some information and put it into Splunk: https://developer.cisco.com/network-automation/detail/98cc1342-5b6c-11eb-b2c1-0ec2761e2c74/

 

I don't see any preprepared scripts for LogRythm though.

Customers Also Viewed These Support Documents