[ATP/FLEX] How to configure remote Syslog server on Nebula?
Syslog is a protocol for message logging that Firewall uses to send event logs to a remote server for logging. On Firewall, Syslog can be used to log events such as Link status, system build-in service, security policy control, etc. A lot of different types of events can be logged. Logs are essential when troubleshooting issues. This example illustrates how to configure remote Syslog server on Nebula
Configurations
Navigate to Configure > Site settings and click Add in Reporting section.
Server IP: Enter the IP address of the Syslog server.
Types: Security Appliance traffic log/Security Application Log AP Log / Switch Log
AP traffic Log: Log traffic for APs in the site that have NAT mode enabled. You can also send the logs to a Syslog server, by selecting AP traffic log under Syslog server > Types.
SecuReporter: Turn it on to allow the NCC to send traffic logs to SecuReporter.
* Disable this option if you have configured sending of traffic logs to an external syslog server.
Note: It is unable to send syslog via VPN tunnels.
Verification
After completing the configuration, you are able to see logs sent from Firewall on Syslog server.
Categories
- All Categories
- 415 Beta Program
- 2.5K Nebula
- 152 Nebula Ideas
- 101 Nebula Status and Incidents
- 5.8K Security
- 296 USG FLEX H Series
- 281 Security Ideas
- 1.5K Switch
- 77 Switch Ideas
- 1.1K Wireless
- 42 Wireless Ideas
- 6.5K Consumer Product
- 254 Service & License
- 396 News and Release
- 85 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.6K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 87 About Community
- 76 Security Highlight