I am about to configure some Cisco CGR's into my SIEM - (Basically rugged 1921's) which has the security features/licenses.
These will be implementing firewall rules that I want to be monitoring by the SIEM.
Are there any recommendations on how the SIEM should be configured to make best use of this information?
Am I right in guessing this will still be considered a Cisco IOS device? or is it more like a ASA in the SIEM config?
Thanks for all your help!