I have been trying to pull the logs from Sophos device with the following configuration but looks like something is wrong in the configuration as I can't see any log messages in the Kibana dashboard. Any pointers? I have changed serial_number with some random number for posting here.
module: sophos
xg:
enabled: true
var.input: udp
var.syslog_host: 0.0.0.0
var.syslog_port: 9005
var.default_host_name: firewall.localgroup.local
var.known_devices:
- serial_number: "123456789"
hostname: "192.168.3.1"
- serial_number: "1234556789"
hostname: "192.168.3.1"
-Santosh