From 42ec1b566eaf7b7bbea70b62962046f1611eab06 Mon Sep 17 00:00:00 2001 From: Chanan Welt Date: Wed, 10 Jul 2024 14:06:41 +0300 Subject: [PATCH] update README.md --- Packs/FortiGate/README.md | 23 +++++++++++------------ 1 file changed, 11 insertions(+), 12 deletions(-) diff --git a/Packs/FortiGate/README.md b/Packs/FortiGate/README.md index 412c52134990..d3de02cfd293 100644 --- a/Packs/FortiGate/README.md +++ b/Packs/FortiGate/README.md @@ -1,5 +1,6 @@ <~XSIAM> -# Fortigate + +# Fortinet FortiGate This pack includes Cortex XSIAM content. Fortigate versions: 7.x @@ -8,7 +9,7 @@ Fortigate versions: 7.x You need to configure Fortigate to forward Syslog messages. 1. Log in to the FortiGate web interface using your admin credentials. -2. Open a CLI console by clicking the **_>** icon in the top right corner +2. Open a CLI console by clicking the **`_>`** icon in the top right corner 4. Run the following command: ```bash config log syslogd setting @@ -19,7 +20,7 @@ You need to configure Fortigate to forward Syslog messages. set port ``` -More information can be found [here](https://docs.fortinet.com/document/fortigate/7.4.1/administration-guide/250999/log-settings-and-targets) +More information can be found [here](https://docs.fortinet.com/document/fortigate/7.4.4/administration-guide/250999/log-settings-and-targets). ## Collect Events from Vendor In order to use the collector, use the [Broker VM](#broker-vm) option. @@ -30,12 +31,10 @@ In order to use the collector, use the [Broker VM](#broker-vm) option. ### Broker VM You will need to use the information described [here](https://docs-cortex.paloaltonetworks.com/r/Cortex-XDR/Cortex-XDR-Pro-Administrator-Guide/Configure-the-Broker-VM).\ You can configure the specific vendor and product for this instance. -1. Navigate to **Settings** -> **Configuration** -> **Data Broker** -> **Broker VMs**. -2. Right-click, and select **Syslog Collector** -> **Configure**. -3. When configuring the Syslog Collector, set: - - vendor as Fortinet - - product as FortiGate - - - - \ No newline at end of file +1. Navigate to **Settings** → **Configuration** → **Data Broker** → **Broker VMs**. +2. Right-click, and select **Syslog Collector** → **Configure**. +3. When configuring the Syslog Collector, set the following: + - vendor as *Fortinet*. + - product as *FortiGate*. + + \ No newline at end of file