[ATP/FLEX] How to configure remote Syslog server on Nebula?
Zyxel Employee
Syslog is a protocol for message logging that Firewall uses to send event logs to a remote server for logging. On Firewall, Syslog can be used to log events such as Link status, system build-in service, security policy control, etc. A lot of different types of events can be logged. Logs are essential when troubleshooting issues. This example illustrates how to configure remote Syslog server on Nebula
Configurations
Navigate to Configure > Site settings and click Add in Reporting section.
Server IP: Enter the IP address of the Syslog server.
Types: Security Appliance traffic log/Security Application Log AP Log / Switch Log
AP traffic Log: Log traffic for APs in the site that have NAT mode enabled. You can also send the logs to a Syslog server, by selecting AP traffic log under Syslog server > Types.
SecuReporter: Turn it on to allow the NCC to send traffic logs to SecuReporter.
* Disable this option if you have configured sending of traffic logs to an external syslog server.
Note: It is unable to send syslog via VPN tunnels.
Verification
After completing the configuration, you are able to see logs sent from Firewall on Syslog server.
Categories
- All Categories
- 441 Beta Program
- 2.9K Nebula
- 210 Nebula Ideas
- 127 Nebula Status and Incidents
- 6.4K Security
- 539 USG FLEX H Series
- 340 Security Ideas
- 1.7K Switch
- 84 Switch Ideas
- 1.3K Wireless
- 51 Wireless Ideas
- 6.9K Consumer Product
- 295 Service & License
- 464 News and Release
- 90 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.7K FAQ
- 34 Documents
- 86 About Community
- 99 Security Highlight