|
|
|
|
|
You can configure the UTM-1 appliance to send event logs to a Syslog server residing in your internal network or on the Internet. The logs detail the date and the time each event occurred. If the event is a communication attempt that was rejected by the firewall, the event details include the source and destination IP address, the destination port, and the protocol used for the communication attempt (for example, TCP or UDP).
This same information is also available in the Event Log page (see Viewing the Event Log). However, while the Event Log can display hundreds of logs, a Syslog server can store an unlimited number of logs. Furthermore, Syslog servers can provide useful tools for managing your logs.
|
Note: Kiwi Syslog Daemon is freeware and can be downloaded from http://www.kiwisyslog.com. For technical support, contact Kiwi Enterprises. |
|
|
|
|
Note: When managed by SmartCenter, the appliance automatically sends logs to the SmartCenter Log Viewer using a secure protocol. |
|
|
|
To configure Syslog logging
The Logging page appears.
Logging Page Fields
In this field… |
Do this… |
|---|---|
Syslog Server |
Type the IP address of the computer that will run the Syslog service (one of your network computers), or click This Computer to allow your computer to host the service. |
Clear |
Click to clear the Syslog Server field. |
Syslog Port |
Type the port number of the Syslog server. |
Default |
Click to reset the Syslog Port field to the default (port 514 UDP). |
