|
2
|
|
3
|
Enter the IP address or name of the mail server in the Mail Server (name or IP Address) field.
|
|
4
|
Enter the name of the SonicWALL appliance in the Firewall Name field. The firewall name appears in the subject of email sent by the SonicWALL appliance. By default, the firewall name is the same as the SonicWALL appliance serial number.
|
|
5
|
To override syslog settings with ViewPoint settings, check Override Syslog settings with ViewPoint settings.
|
|
6
|
To select a syslog format, choose one of the two options from the Syslog Format pull-down menu:
|
|
•
|
Default—The standard SonicWALL syslog format.
|
|
•
|
WebTrends—A reporting software that analyzes traffic activity, protocol usage, security problems, resource usage, bandwidth consumption, and more. For more information, visit http://www.webtrends.com.
|
|
7
|
To specify how often Dell SonicWALL GMS logs repetitive events, enter the time period (in seconds) in the Syslog Event Redundancy Filter field (default: 60 seconds). This prevents repetitive events from being logged to the syslog. If duplicate events occur during the period, they are logged as a single event that specifies the number of times that the event occurred. The minimum is 0 seconds and the maximum is 86,400 seconds (24 hours). If you specify 0, all events are logged.
For GMS network deployments using Gen-2/Distributed Summarizer Mode, enter 0 in the Syslog Event Redundancy Filter field. Although a higher setting prevents a log file from being full of repetitive events, setting this field to anything other than 0 results in inaccurate reporting. For information about the Distributed Summarizer, see Summarizer . |
|
8
|
To enable event rate limiting, check Enable Event Rate Limiting and enter a maximum number of events per second in the Maximum Events Per Second field.
|
|
9
|
To enable data rate limiting, check Enable Data Rate Limiting and enter a maximum bytes per second in the Maximum Bytes Per Second field.
|
|
10
|
Specify how often the SonicWALL appliance(s) send heartbeats to Dell SonicWALL GMS in the Heartbeat Rate field (default: 60 seconds). If Dell SonicWALL GMS does not receive a heartbeat message within three intervals, Dell SonicWALL GMS considers the SonicWALL appliances offline or unavailable and its icon turns red.
It is highly recommended to leave the Heartbeat Rate at the default setting of 60 seconds. Values close to zero generates a large number of status messages. The maximum value is 86,400 seconds (24 hours). |
|
11
|
Enter the complete email address (for example, administrator@company.com) where the log is sent in the Email Log to field. If this field is left blank, the log will not be sent.
This address is also used as the return address. |
|
12
|
Some events, such as an attack, might require immediate attention. Enter the complete email address or email pager address in the Email Alerts to field. If this field is left blank, alerts are not sent.
This address is also used as the return address. For information about alerts in the GMS Granular Event Management framework, see Configuring Granular Event Management . |
|
13
|
To email the log now, click Email Log Now.
|
|
14
|
|
15
|
To add a syslog server, enter the IP address and port in the Syslog Server IP Address and Port fields. Click Add.
|
|
16
|
For automated log delivery, specify when the log file is sent from the Send Log pull-down menu. Select When Full, Daily, or Weekly. If the log is sent daily, select the time that the log is sent (24-hour format). If the log is sent weekly, select the day of the week and the time.
|
|
17
|
In some cases, the log buffer might fill up. This could occur if there is a problem with the mail server and the log cannot be successfully emailed. Under When Log Overflows, select Overwrite Log (SonicWALL appliances overwrites the log and discard its contents) or Shutdown SonicWALL (this prevents further traffic from not being logged).
|
|
18
|
Select information to log from the Categories section. To select all categories, check Select All.
If you are using SonicWALL GMS, make sure that it can generate all reports for each SonicWALL appliance by selecting all log category check boxes except for Network Debug. |
|
19
|
When you are finished, click Update.
|