Solved

best reporting application for Watchguard logs

Posted on 2011-09-06
5
656 Views
Last Modified: 2012-05-12
Hello experts - does anyone know of any third party apps for viewing and reporting of Watchguard logs, particularly www traffic ?
0
Comment
Question by:Brett4567
  • 3
  • 2
5 Comments
 
LVL 14

Expert Comment

by:setasoujiro
Comment Utility
why don't you use logviewer ?
it works just fine imo?
0
 

Author Comment

by:Brett4567
Comment Utility
I've got that working now thanks but I can I ask you a couple more questions as I don't have much experience with this stuff.

in order to monitor and report on  www traffic do you have to have the web proxy or web blocker running ?

I ask this becuase I had strange problem. I set up web blocker on this XTM22 and chose to use the Watchguard online database.

I allowed all categories with logging so we could get an idea what is going however it insists on blocking adobe.com downloads (such as Acrobat Reader, Flash Player, etc)

When trying to install these programs a pop up informs the user that the site has been blocked by the Watchguard.

We just want reports at this stage and don't want to block any sites or activities.
 
0
 
LVL 14

Accepted Solution

by:
setasoujiro earned 500 total points
Comment Utility
ok.

the adobe has not to do with webblocker i think, check in the HTTP proxy properties , there is a tab called "content types" in the left menu. windows .exe is blocked by default. so you can remove it there.

if you want logs of ALLOWED packets as well, you should explicitly say so in your policy.
to do so : open the policy and on the second tab click 'logging' , then check the box that says log allowed packets.

If you want to monitor which webblocker categories are being blocked in the future , then you must setup logging for that as well.

Hope this helps
0
 

Author Comment

by:Brett4567
Comment Utility
let me try this and get back to you


0
 

Author Comment

by:Brett4567
Comment Utility
I think its all working thanks. Can we leave it open for a couple more days just to make sure
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
SBS2011 DNS for external FQDN 6 45
Eigrp versus OSPF in a ring topology 3 42
PCAnywhere 2 53
IIS 7.5 to 8.0 6 68
The problem of the system drive in SBS 2003 getting full continues to be an issue, even though SBS 2008 and SBS 2011 are both in the market place.  There are several solutions to this, including adding additional drive space or using third party uti…
Network ports are the threads that hold network communication together. They are an essential part of networking that can be easily ignore or misunderstood, my goals is to show those who don't have a strong network foundation how network ports opera…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now