ProSecure Unified Threat Management UTM10 or UTM25 Reference Manual

Table 11-3. E-mail and Syslog Settings (continued)

Setting

Description (or Subfield and Description)

 

 

 

Enable

Select Logs to

IPS Logs. All IPS events.

(continued)

Send

SSL VPN Logs. All SSL VPN events.

 

(continued)

IPSEC VPN Logs. All IPsec VPN events.

 

 

Content Filter Logs. All attempts to access blocked Web sites and

 

 

URLs.

 

 

Service Logs. All events that are related to the status of scanning

 

 

and filtering services that are part of the Application Security main

 

 

navigation menu. These events include update success messages,

 

 

update failed messages, network connection errors, and so on.

 

 

Portscan Logs. All port scan events.

 

 

 

 

Format

Select a radio button to specify the format in which the log file is sent:

 

 

Plain text. The log file is sent as a plain text file.

 

 

CSV. The log file is sent as a comma separated values (CSV) file.

 

 

Select the Zip the logs to save space checkbox to enable the UTM to

 

 

compress the log file.

 

Size

Select the Split logs size to checkbox to break up the log file into

 

 

smaller files, and specify the maximum size of each file in MB.

Send Logs via Syslog

 

 

 

 

Enable

Select this checkbox to enable the UTM to send a log file to a syslog server.

 

 

 

 

SysLog Server

The IP address or name of the syslog server.

 

 

 

Enable

SysLog Severity

All the logs with a severity that is equal to and above the severity that

(continued)

 

you specify are logged on the specified syslog server. For example, if

 

 

you select LOG_CRITICAL as the severity, then the logs with the

 

 

severities LOG_CRITICAL, LOG_ALERT, and LOG_EMERG are

 

 

logged.

 

 

Select one of the following syslog severities:

 

 

LOG EMERG. The UTM is unusable.

 

 

LOG ALERT. An action must be taken immediately.

 

 

LOG CRITICAL. There are critical conditions.

 

 

LOG ERROR. There are error conditions.

 

 

LOG WARNING. There are warning conditions.

 

 

LOG NOTICE. There are normal but significant conditions.

 

 

LOG INFO. Informational messages.

 

 

LOG DEBUG. Debug-level messages.

 

Logs

Select the checkboxes to specify which logs are sent via the syslog

 

 

server. The “Select Logs to Send” part of the “Email Logs to

 

 

Administrator” section of the screen (see above) lists the same

 

 

checkboxes as the “Send Logs via Syslog” section of the screen.

 

 

 

Monitoring System Access and Performance

11-9

v1.0, September 2009

Page 367
Image 367
NETGEAR UTM10EW-100NAS, UTM25-100NAS, UTM25EW-100NAS Setting Description or Subfield and Description, Send Logs via Syslog