Log_logAutomationView
The Log > Automation page includes settings for configuring the SonicWALL to send log files using Email and configuring mail server settings.
The Email Log Automation page provides automatic Email notification of logs and alerts.
The Email Log Automation page provides the following Email services:
• Send Log to Email address - Enter your Email address (username@mydomain.com) in this field to receive the event log via Email. Once sent, the log is cleared from the SonicWALL memory. If this field is left blank, the log is not Emailed.
• Send Alerts to Email address - Enter your Email address (username@mydomain.com) in the Send alerts to field to be immediately Emailed when attacks or system errors occur. Type a standard Email address or an Email paging service. If this field is left blank, Email alert messages are not sent.
• Send Log - Determines the frequency of sending log files. The options are When Full, Weekly, or Daily. If the Weekly or Daily option is selected, then select the day of the week the log is sent in the every menu and the time of day in 24-hour format in the At field.
• Email Format - Specifies whether log emails will be sent in Plain Text or HTML format.
Health Check E-mail Notification
The Health Check E-mail Notification page enables you to send an Email with a set subject and body at the times specified by a schedule.
The mail server settings allow you to specify the name or IP address of your mail server, the from Email address, and authentication method.
• Mail Server (name or IP address) - Enter the IP address or FQDN of the Email server used to send your log Emails in this field.
• From Email Address - Enter the Email address you want to display in the From field of the message.
• Authentication Method - You can use the default None item or select POP Before SMTP.
Note If the Mail Server (name or IP address) is left blank, log and alert messages are not Emailed.
Solera Networks makes a series of appliances of varying capacities and speeds designed to capture, archive, and regenerate network traffic. The Solera Networks Network Packet Capture System (NPCS) provides utilities that allow the captured data to be accessed in time sequenced playback, that is, analysis of captured data can be performed on a live network via NPCS while the device is actively capturing and archiving data.
To configure your Dell SonicWALL network security appliance with Solera, select the Enable Solera Capture Stack Integration option.
Configure the following options:
• Server - Select the host for the Solera server. You can dynamically create the host by selecting Create New Host...
• Protocol - Select either HTTP or HTTPS.
• Port - Specify the port number for connecting to the Solera server.
• Interface(s) - Specify which interfaces you want to transmit data for to the Solera server.
• User (optional) - Enter the username, if required.
• Password (optional) - Enter the password, if required.
• Confirm Password - Confirm the password.
– Mask Password - Leave this enabled to send the password as encrypted text.
• DeepSee Base URL - Defines the format for the base URL for the DeepSee path. In the actual URL, the special tokens are replaced with the actual values.
• PCAP Base URL - Defines the format for the base URL for the PCAP path. In the actual URL, the special tokens are replaced with the actual values.
• The following tokens can be used in the DeepSee Base URL and PCAP Base URL fields:
– $host - server name or IP address that has the data
– $port - HTTP/HTTPS port number where the server is listening
– $usr - user name for authentication
– $pwd - password for authentication
– $start - start date and time
– $stop - stop date and time
– $ipproto - IP protocol
– $scrip - source IP address
– $dstip - destination IP address
– $srcport - source port
– $dstport - destination port