Tenable Products

Supported Devices

Tenable Log Correlation Engine stores, compresses and analyzes any type of ASCII log generated by thousands of network devices and applications.

The list below includes supported platforms. New devices are continuously being added.

Anomaly Detection

  • Arbor
  • Tenable Log Correlation Engine anomalies
  • Stealthwatch

Applications

  • Arpwatch
  • Citrix
  • Dovecot
  • Exim
  • IMAP
  • IRCd
  • Microsoft Exchange
  • ncFTP
  • Nessus
  • OpenSSH
  • POP
  • Postfix
  • proFTP
  • Pure FTP
  • Qpopper
  • Sendmail
  • all Tenable Products
  • UPS
  • wu-FTP
  • wu-IMAP
  • Xpient credit card transaction processing

Audit Trails 

  • Support for auditing of all system and user commands for Windows
  • Linux, FreeBSD, OS X and Solaris is supported by all Tenable Log Correlation Engine clients.
  • Oracle Audit Trails

Authentication

  • BlueSocket
  • Cisco ACS
  • Cisco NAC
  • Entrust IndentityGuard
  • ForeScout CounterACT
  • Microsoft ISA
  • Steel Belted Radius

Databases

DNS

  • Bind
  • all supported web proxies
  • sniffed DNS lookups observed by the Passive Vulnerability Scanner

File Integrity

  • Tenable Log Correlation Engine Agents for Windows and Unix
  • Tripwire

Firewalls & IPS

  • Adtran
  • Arkoon
  • Astaro
  • Checkpoint
  • Cisco ASA
  • Cisco PIX
  • CyberGuard
  • D-Link
  • Fortigate
  • Fortinet
  • F5 Big IP Application Firewall
  • Gauntlet
  • Ipchains
  • Ipfilter
  • Iptables
  • Juniper
  • Microsoft ISA
  • Kerio
  • NetGear
  • OpenBSD's pf
  • Palo Alto
  • PortSentry
  • SecureSphere Database Firewall
  • SideWinder
  • SonicWall
  • Stonegate
  • Sygate
  • Symantec
  • Windows XP, Vista, etc.
  • ZoneAlarm

Honey Pots

  • ForeScout
  • Honeyd
  • La Brea
  • Multipot
  • Nepenthes
  • Symantec Decoy Server
  • WebLabyrinth

Intrusion Detection/Prevention 

  • AirMagnet
  • Bro
  • Cisco IDS/IPS
  • Dragon
  • IntruSheild
  • Juniper
  • Checkpoint (Network Flight Recorder)
  • Portaledge
  • Proventia
  • Snort
  • Sourcefire
  • Suricata
  • TippingPoint
  • Toplayer IPS

Malware/Virus 

  • ClamAV
  • eTrust
  • FireEye
  • McAfee
  • Microsoft ForeFront
  • Symantec
  • Trend Micro
  • Windows Defender

Network Devices

  • 3Com
  • Apple Airport
  • Buffalo
  • Cisco 3000 VPN Concentrator
  • Cisco ACE
  • Cisco Aironet
  • Cisco IOS
  • Citrix Access Gateway
  • DHCP leases
  • D-Link
  • Enterasys
  • Extreme
  • Foundry
  • Juniper

Network Monitors

  • McAfee DLP
  • RNA
  • Tenable NetFlow Monitor (v5 and v9)
  • Tenable Network Monitor
  • forensic logging from the Tenable Passive Vulnerability Scanner

Operating Systems

  • AIX
  • AS400 (via PowerTech)
  • FreeBSD
  • IBM z/OS (via Type80 SMA_RT syslogs)
  • Linux (Red Hat, Fedora, CentOS, SuSE)
  • Mac OS X
  • Solaris
  • Windows (NT, 2000, XP, 2003, Vista, 2008, 7)

Spam

  • Amavis
  • Barracuda
  • MailScanner

Web Servers

  • Apache 1.x/2.x
  • Microsoft IIS
  • Oracle HTTP Server
  • PHP Suhosin extensions

Web Proxies

  • BlueCoat
  • McAfee Web Gateway
  • Squid
  • WC3/NCSA compatible log formats
  • sniffed web browsing sessions observed by the Tenable Passive Vulnerability Scanner
Oracle HTTP Server’