Firewall remote log page – Motorola SURFboard SBG901 User Manual

B

7 • Firewall Pages

55

Firewall Remote Log Page

This page allows you to send firewall attack reports out to a standard SysLog server so
many instances can be logged over a long period of time. You can select individual attack
or configuration items to send to the SysLog server so that only the items of interest will
be monitored. You can log permitted connections, blocked connections, known Internet
attack types, and CMRG configuration events. The SysLog server must be on the same
network as the Private LAN behind the Configuration Manager (typically 192.168.0.x). To
activate the SysLog monitoring feature, check all desired event types to monitor and
enter the last byte of the IP address of the SysLog server. Normally, the IP address of
this SysLog server would be hard-coded so that the address does not change and always
agrees with the entry on this page.

Field Description for the Firewall Remote Log Page

Field

Description

Permitted Connections

Check for the server to e-mail you logs of who is connecting
to your network.

Blocked Connections

Check for the server to e-mail you logs of who is blocked
from connecting to your network.

Known Internet Attacks

Check for the server to e-mail you logs of known Internet
attacks against your network.

Product Configuration Events

Check for the server to e-mail you logs of the basic product
configuration events logs.

To SysLog server at 192.168.0.

Enter the last digits from 10 to 254 of your SysLog server’s
IP address.

When done, click Apply.