CtrlK

Getting Started
Platform Management
Endpoint Agent
Microsoft 365
Appliances
- Network Sensor
- Syslog Forwarder
SIEM Integrations
Attack Surface Management
Security Operations
SOC Analyst Guide
Legal and Compliance

Powered by GitBook

On this page

Requirements
Steps
Step 1. Access pfSense Syslog Settings
Step 2. Configure Remote Syslog Server
Step 4. Provide Details to ThreatDefence

SIEM Integrations
Firewalls

pfSense

You can configure a pfSense® firewall to forward syslog logs to the ThreatDefence (TD) Syslog Forwarder for security monitoring.

Requirements

A deployed and activated ThreatDefence Syslog Forwarder VM
Administrator access to the pfSense firewall

Steps

Step 1. Access pfSense Syslog Settings

Sign in to your pfSense WebGUI with administrator permissions.
Navigate to: Status → System Logs → Settings

Step 2. Configure Remote Syslog Server

In the Remote Syslog Servers section, add your TD Syslog Forwarder:
- IP Address — Enter the IP address of your TD Syslog Forwarder
- Port — Use the appropriate port (as per the Syslog Onboarding Guide)
- Transport — Select UDP
Under System Events to Send to Syslog, enable:
- Firewall Events
- System Events
- VPN Events (if applicable)
- DHCP/DNS Events (if applicable)
Click Save

Step 4. Provide Details to ThreatDefence

Once configuration is complete, provide the following details to ThreatDefence Support at 📧 [email protected]:

Firewall make/model and pfSense version
Source IP address and used port number.

PreviousSonicWall NextBarracuda

Last updated 25 days ago