Merge pull request #1821 from SEKOIA-IO/feat/EfficientIPDoc

EfficientIP: add the documentation for EfficientIP SOLIDServer
SEKOIA-IO · Jul 11, 2024 · ee5a2c9 · ee5a2c9
2 parents 4981ea7 + 450802f
commit ee5a2c9
Show file tree

Hide file tree

Showing 6 changed files with 55 additions and 0 deletions.
diff --git a/...ter/integration_catalog/network/efficientip_solidserver/01 - administration.png b/...ter/integration_catalog/network/efficientip_solidserver/01 - administration.png
diff --git a/...nter/integration_catalog/network/efficientip_solidserver/02 - configuration.png b/...nter/integration_catalog/network/efficientip_solidserver/02 - configuration.png
diff --git a/...tion_center/integration_catalog/network/efficientip_solidserver/03 - syslog.png b/...tion_center/integration_catalog/network/efficientip_solidserver/03 - syslog.png
diff --git a/...tion_center/integration_catalog/network/efficientip_solidserver/04 - target.png b/...tion_center/integration_catalog/network/efficientip_solidserver/04 - target.png
diff --git a/docs/xdr/features/collect/integrations/network/efficientip_solidserver_ddi.md b/docs/xdr/features/collect/integrations/network/efficientip_solidserver_ddi.md
@@ -0,0 +1,54 @@
+uuid: f95fea50-533c-4897-9272-2f8361e63644
+name: EfficientIP SOLIDServer DDI
+type: intake
+
+## Overview
+
+EfficientIP SOLIDserver suite of appliances is designed to deliver highly scalable, secure and robust virtual and hardware appliances for critical IPAM-DNS-DHCP-NTP-TFTP services.
+
+{!_shared_content/operations_center/detection/generated/suggested_rules_f95fea50-533c-4897-9272-2f8361e63644_do_not_edit_manually.md!}
+
+{!_shared_content/operations_center/integrations/generated/f95fea50-533c-4897-9272-2f8361e63644.md!}
+
+## Configure
+
+In this guide, you will configure the gateway to forward events to syslog.
+
+### Prerequisites
+
+An internal syslog concentrator is required to collect and forward events to Sekoia.io.
+
+
+### Enable Syslog forwarding
+
+1. Log in SOLIDServer console
+2. On the left panel, click `Administration`
+
+    ![Adminstation](/assets/operation_center/integration_catalog/network/efficientip_solidserver/01 - administration.png)
+
+3. In the `monitoring` section, click `Configuration`
+
+    ![Configuration](/assets/operation_center/integration_catalog/network/efficientip_solidserver/02 - configuration.png)
+
+4. In the menu, click `+ Add`
+
+    ![syslog](/assets/operation_center/integration_catalog/network/efficientip_solidserver/03 - syslog.png)
+
+5. In the `Services` drop-dwon, select the following services:
+	- `named`
+
+6. In the `Target server`, fill the ip address and the port of the log concentrator.
+
+    ![target](/assets/operation_center/integration_catalog/network/efficientip_solidserver/04 - target.png)
+
+7. Click `OK`
+
+
+## Create the intake
+
+Go to the [intake page](https://app.sekoia.io/operations/intakes) and create a new intake from the format `EfficientIP SOLIDServer DDI`.
+
+
+## Forward logs to Sekoia.io
+
+Please consult the [Syslog Forwarding](../../../ingestion_methods/sekoiaio_forwarder/) documentation to forward these logs to Sekoia.io.
diff --git a/mkdocs.yml b/mkdocs.yml
@@ -236,6 +236,7 @@ nav:
             - Cisco Meraki MX: xdr/features/collect/integrations/network/cisco/cisco_meraki_mx.md
           - Citrix Netscaler / ADC: xdr/features/collect/integrations/network/citrix_netscaler_adc.md
           - Ekinops OneOS: xdr/features/collect/integrations/network/ekinops_oneos.md
+          - EfficientIP SOLIDserver: xdr/features/collect/integrations/network/efficientip_solidserver_ddi.md
           - Gatewatcher AionIQ: xdr/features/collect/integrations/network/gatewatcher_aioniq.md
           - F5 BIG-IP: xdr/features/collect/integrations/network/f5-big-ip.md
           - Forcepoint Secure Web Gateway: xdr/features/collect/integrations/network/forcepoint_web_gateway.md