ProSecure Unified Threat Management (UTM) Appliance Reference Manual

Table 11-3. E-mail and Syslog Settings (continued)

Setting

Description (or Subfield and Description)

Clear the Following Logs Information

Select the checkboxes to specify which logs are cleared. The “Select Logs to Send” part of the “Email Logs to Administrator” section of the screen (see above) lists the same checkboxes as the “Clear the Following Logs Information” section of the screen.

3.Click Apply to save your settings or click Clear Log Information to clear the selected logs.

Configuring and Activating Update Failure and Attack Alerts

You can configure the UTM to send an e-mail alert when a failure, malware (outbreak) attack, or Intrusion Prevention System (IPS) (outbreak) attack occurs. Five types of alerts are supported:

Update Failure Alert. Sent when an attempt to update any component such as a pattern file or scan engine firmware fails.

Malware Alert. Sent when the UTM detects a malware threat.

Malware Outbreak Alert. Sent when the malware outbreak criteria that you have configured are reached or exceeded. Outbreak criteria are based on the number of malware threats detected within a specified period of time.

IPS Alert. Sent when the UTM detects an attack.

IPS Outbreak Alert. Sent when the IPS outbreak criteria that you have configured are reached or exceeded. Outbreak criteria are based on the number of IPS attacks detected within a specified period of time.

To configure and activate the e-mail alerts:

1.Select Monitoring > Logs & Reports from the menu. The Logs & Reports submenu tabs appear, with the Email and Syslog screen in view.

2.Click the Alerts submenu tab. The Alerts screen displays (Figure 11-5 on page 11-11).

11-10

Monitoring System Access and Performance

v1.0, January 2010

Page 372
Image 372
NETGEAR UTM50-100NAS, UTM5-100NAS manual Configuring and Activating Update Failure and Attack Alerts