Get SNMP traffic from Juniper Netscreen 5GT

Posted on 2007-10-19
Last Modified: 2012-05-05
I have a couple of Juniper Netscreen 5GTs that I need to put in place of some cheep Linksys routers.  I cannot figure out how to get a report of what URls have been visited.  I can get this out of the linksys  so I can't believe that I can't get this out of the Netscreen without buying an additional $10K worth of software.  Can the netscreens be set up to send this information to a specific IP address via SNMP?
Question by:MERCOMMS
    LVL 5

    Accepted Solution

    You can set up logging to a syslog server. First set up a policy allowing the traffic you want to monitor. (HTTP & HTTPS for example.) Then turn logging on for that policy. Then in the WebUI, go to Configuration > Report Settings > Syslog. Enable syslog messages, set your source port for sending the syslogs (Most likely your trusted interface). TCP 514 is the most common port used, but you can set it to just about anything you want. Set the reports to go to a syslog server ip address. Make sure you check traffic log so you can get the traffic sent out. Then add syslog server service to a Windows server with the same ip address that you set up to report to on the firewall. Here is a demonstration for Windows server 2003, but you can set one up on just about any operating system.

    You will need an event log analyzer after that unless you really like reading though a bunch of text yourself. If so, more power to you. I've used several event log analyzers. ReportGen for Netscreen 1.1.3 is a decent shareware analyzer that is designed for Netscreens and runs on windows. Download and try it. If you like it, I think it's $39.00. Have fun.

    Author Comment

    I configured a policy as you described, downloaded and installed WinSysLog Config Client, downloaded and installed ReportGen.

    Report Gen is asking for a log file.

    How do I tell if log traffic is coming in?  How do I view the log?
    LVL 5

    Expert Comment

    The steps for configuring WinSysLog are here:

    You should browse with report gen to where you set up the log file. See
    This link is for the ISA server product, but it is set up very much the same.

    Author Comment

    Thanks  I have logs coming in but is there any way for it to list the domain visited?  

    I have checked the box in the services configuration for Resolve Hose Names.

    Author Comment

    I wrote an app to process the log file that does DNS lookup to convert IP address to URL.

    Featured Post

    What Security Threats Are You Missing?

    Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

    Join & Write a Comment

    Suggested Solutions

    We sought a budget ($5,000) firewall solution that would provide all the performance we needed with no single point of failure.  Hosting a SAAS web application in our datacenter, it was critical that we find a way to keep connectivity up and inbound…
    Hi All,  Recently I have installed and configured a Sonicwall NS220 in the network as a firewall and Internet access gateway. All was working fine until users started reporting that they cannot use the Cisco VPN client to connect to the customer'…
    In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…
    This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

    755 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    23 Experts available now in Live!

    Get 1:1 Help Now