ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.
Juniper SRX logs are not received by the SRX collector
Article ID: 157013
Updated On:
Products
Security Information Manager
Issue/Introduction
Juniper SRX events were not redirected to the SSIM Juniper SRX Event collector v5.0.x by the Syslog director v4.3
No errors but Juniper SRX events were re-directed to the Generic Syslog collector instead
Cause
The Juniper SRX collector was registered on all SSIM appliances from SSIM Web UI but was not installed on the appliances itself.
Notice that the junipersrx collector directory does not exist on the following directory on the SSIM appliance /opt/Symantec/sesa/Agent/collectors/
Resolution
Install the file install-junipersrxcollector.jar onto the collector appliances from the SSIM Web UI-->Maintenance-->System Updates-->Install.
Applies To
4 SSIM 4.7.4.54( 2 correlators with LDAP replication+2 collectors)
Feedback
Yes
No
Powered by
