Document toolboxDocument toolbox

cef0.fortinet

Owned by Juan Tomás Alonso Nieto (Deactivated)
May 08, 2023
1 min read
[ 1 Introduction ] [ 2 Tag structure ] [ 3 How is the data sent to Devo? ]

Introduction

The tables beginning with cef0.fortinet identify events in CEF format generated by Fortinet.

Tag structure

Events in CEF format don't have a specific tag structure, as explained in Technologies supported in CEF syslog format. They are always sent to a table with the structure cef0.deviceVendor.deviceProduct.

In this case, the valid data tables are:

  • cef0.fortinet.fortigate60e

  • cef0.fortinet.fortigate300d

  • cef0.fortinet.fortigate600e 

  • cef0.fortinet.fortigate400e 

  • cef0.fortinet.fortigate200e 

How is the data sent to Devo?

Learn more about CEF syslog format and how Devo tags these events in Technologies supported in CEF syslog format.