[ATP/FLEX] How to configure remote Syslog server on Nebula?
Syslog is a protocol for message logging that Firewall uses to send event logs to a remote server for logging. On Firewall, Syslog can be used to log events such as Link status, system build-in service, security policy control, etc. A lot of different types of events can be logged. Logs are essential when troubleshooting issues. This example illustrates how to configure remote Syslog server on Nebula
Configurations
Navigate to Configure > Site settings and click Add in Reporting section.
Server IP: Enter the IP address of the Syslog server.
Types: Security Appliance traffic log/Security Application Log AP Log / Switch Log
AP traffic Log: Log traffic for APs in the site that have NAT mode enabled. You can also send the logs to a Syslog server, by selecting AP traffic log under Syslog server > Types.
SecuReporter: Turn it on to allow the NCC to send traffic logs to SecuReporter.
* Disable this option if you have configured sending of traffic logs to an external syslog server.
Note: It is unable to send syslog via VPN tunnels.
Verification
After completing the configuration, you are able to see logs sent from Firewall on Syslog server.
Categories
- All Categories
- 384 Beta Program
- 2.1K Nebula
- 117 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 76 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 209 Service & License
- 335 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 897 Nebula FAQ
- 415 Security FAQ
- 233 Switch FAQ
- 205 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 62 Security Highlight