Firewall Integration Manual

WatchGuard Firebox Log Export Guide

Follow these step-by-step instructions to export outbound connection logs from your WatchGuard Firebox appliances to run a local Shadow AI discovery audit.

Export Procedure

  1. Access your WatchGuard System Manager portal.
  2. Launch Firebox System Manager and view the Traffic Monitor screen.
  3. Alternatively, log in to **Dimension** or the Web UI Log Manager.
  4. Select the specific dates, click **Export Logs**, and choose **CSV** format.
  5. Ensure the CSV includes columns for source address, destination host, and byte sizes.

Required CSV Format

Our client-side parser reads logs mapped to these values. Column headers can be customized in the audit panel:

timestamp, source_ip, department (optional), destination_domain, bytes_sent

Need a baseline schema template to test? Download our pre-configured sample dataset matching standard WatchGuard Firebox logs structure.

Ready to Scan your WatchGuard Firebox Logs?

Import your CSV file directly. The audit processing runs in the browser, meaning your logs are parsed locally in a sandbox. Zero telemetry is sent to any server.

Upload CSV Audit File