How to send device logs to SecuReporter
Zyxel Employee
SecuReporter is a security analytics portal that collects and analyzes logs from SecuReporter-licensed Zyxel Devices in order to identify anomalies, alert on potential internal / external threats, and report on network usage. The article explains what you need to configure on ATP/USG FLEX to make devices send logs to SecuReporter.
Configuration steps
The logs in SecuReporter > Analysis > Security Indicator and SecuReporter > Analysis > Network Activity are related to “Security Service".
There must be match rules for security services on the device to send data to SecuReporter.
Go to CONFIGURATION > Mgmt. & Analytics > SecuReporter > Categories and make sure these options are enabled.
Especially you need to select the profile and apply each security service feature on the policy rule to create logs for security features such as Web Content Filter, DNS Content Filter and App Patrol.
The logs in SecuReporter > Analysis > Traffic is related to traffic usage and security statistics.
Make sure the following options are enabled.
Note: The following data are displayed on SecuReporter when the device has “SecuReporter Premium” license.
The logs in SecuReporter > Analysis > Device is related to “Interface Statistics” and “CPU/Session”.
Make sure the following options are enabled.
Categories
- All Categories
- 390 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 78 Nebula Status and Incidents
- 5.1K Security
- 51 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 70 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 332 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 880 Nebula FAQ
- 415 Security FAQ
- 220 Switch FAQ
- 195 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 63 Security Highlight