Botnet connexions and logs
Options
Hello,
I got in my daily report an IP blocking from one of my device flagged as a botnet.
I wanted to get more information about it and checked my logs.
So I looked for the botnet IP in my syslog server and couldn't find anything. If I seek for device IP and the datetime the event happened, can't find anything related to this blocked IP.
My question is: does this reputation app also log in the syslog? If yes, is there any particular pattern to seek for these blocks?
Kind regards
0
All Replies
-
Hi @mat17,
You can see detailed log at "MONITOR > Log > View Log". But those event log have log rotation.We would suggest to attach USB stick or using SecuReporter to have more detailed information0
Categories
- All Categories
- 390 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 78 Nebula Status and Incidents
- 5.1K Security
- 51 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 331 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 879 Nebula FAQ
- 414 Security FAQ
- 220 Switch FAQ
- 194 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 61 Security Highlight