Security Policy Control Log

Options
Danee
Danee Posts: 9 image  Freshman Member
First Comment Friend Collector First Anniversary
in Security

Hello,

I have an USG FLEX 200H firewall,
and I didnt find a way to make log from Security Policy Control events and save the log.
The log in Log&Reports⇒Log/Events⇒System⇒Security Policy Control is very short in time range: 2-3 minutes long event list.
Is there a way to make it longer and be saved or reported in email?

Also:
Can I log incoming traffic by IP in the firewall?

All Replies

  • Peppino
    Peppino Posts: 180 image  Master Member
    First Comment Friend Collector Seventh Anniversary

    A syslog server? That could do the job if you have a server already.

  • Zyxel_Melen
    Zyxel_Melen Posts: 4,129 image  Zyxel Employee
    Zyxel Certified Network Engineer Level 1 - Switch Zyxel Certified Network Administrator - Switch Zyxel Certified Network Administrator - Nebula Zyxel Certified Sales Associate

    Hi @Danee

    To log for any security policy, you can change the log setting in each of them.

    image.png

    Here is the place you set.

    Is there a way to make it longer and be saved or reported in email?

    No, you can use USB storage or syslog server to save the logs. You may check our handbook page 220 ~ 224 to learn how to setup.

    Can I log incoming traffic by IP in the firewall?

    The firewall records the traffic with src. IP and dst. IP once you have set the security policy and the traffic match this policy.

    For example, I have a security policy "WAN to ZyWall, deny all"; then I can see the blocked traffic by which src. IP.

    Zyxel Melen


Categories

Security Help Center

EnglishTiếng ViệtРусскийไทย中文(台灣)