Displaying and hiding fields – WatchGuard Technologies FireboxTM System 4.6 User Manual

Page 115

Advertising
background image

VPN Manager Guide

105

Displaying and hiding fields

Displaying and hiding fields

Use the Preferences dialog box to show or hide columns displayed in LogViewer.
From LogViewer:

1

Select View => Preferences. Click the Filter Data tab.

2

Enable the checkboxes of the fields you would like to display. Disable the
checkboxes of those columns you would like to hide.

To hide columns, point the mouse at the right edge of the column heading in the main window

and click and drag the edge to the left until the column disappears.

LogViewer displays log entries across several columns. Log entries sent to the
WatchGuard log have a time stamp, host name, process name, and the process ID
before the log summary. The following describes each column and its default status:

Number

The sequence number in the file. Default = Hide

Date

The date the record entered the log file. Default = Show

Time

The time the record entered the log file. Default = Show

The rest of the columns vary according to the type of event displayed. The events of
most frequency and interest, however, are packet events, which would display data
as shown below:

deny in eth0 339 udp 20 128 192.168.49.40 255.255.255.255 67 68

(bootpc)

The packet event fields are described here in order, from left to right.

Disposition

Default = Show. The disposition can be allow, deny, or log, as follows:

- Allow – Packet was permitted by the current set of filter rules.

- Deny – Packet was dropped by the current set of filter rules.

- Log – The eventual disposition of the current packet was unknown when

the output was generated.

Direction

Determines whether the packet was logged when it was received by the
interface (“in”) or when it was about to be transmitted by the Firebox (“out”).
Default = Hide

Interface

The name of the network interface associated with the packet.
Default = Show

Total packet length

The total length of the packet in octets. Default = Hide

Protocol

Protocol name, or a number from 0 to 255. Default = Show

Advertising
Popular Brands
Popular manuals