
CHAPTER 51: Configuring Log Automation
E-mail
•Mail Server - to
•Send Log To - enter your full
•Send Alerts To - enter your full
•Send Log / Every / At - The Send Log menu determines the frequency of log
Syslog Servers
In addition to the standard event log, the SonicWALL security appliance can send a detailed log to an external Syslog server. The SonicWALL security appliance Syslog captures all log activity and includes every connection source and destination IP address, IP service, and number of bytes transferred. The SonicWALL security appliance Syslog support requires an external server running a Syslog daemon on UDP Port 514.
Syslog Analyzers such as SonicWALL ViewPoint or WebTrends Firewall Suite can be used to sort, analyze, and graph the Syslog data.
To add syslog servers to the SonicWALL security appliance, click Add. The Add Syslog Server window is displayed.
1Enter the Syslog server name or IP address in the Name or IP Address field. Messages from the SonicWALL security appliance are then sent to the servers. Up to three Syslog Server IP addresses can be added.
2If your syslog is not using the default port of 514, enter the port number in the Port Number field.
3Click OK.
If the SonicWALL security appliance is managed by SGMS, however, the Syslog Server fields cannot be configured by the administrator of the SonicWALL security appliance.
304 | SONICWALL SONICOS STANDARD 3.0 ADMINISTRATOR’S GUIDE |