Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

SRX240 web filter results by email or.... ?

Posted on 2013-12-08
1
Medium Priority
?
460 Views
Last Modified: 2013-12-13
I'm using an SRX240 for web filtering.  Ideally, I'd like to receive a summary email every 8 hours or so that lists all the blocks that occurred.  (I believe that 8 hours will generate a manageable-sized log - but that's a good question).

So, I guess this means collecting the results in a log somewhere / somehow.
Sending the log out via email.
Repeat and delete the old log.

How might one do this?
0
Comment
Question by:Fred Marshall
1 Comment
 
LVL 32

Accepted Solution

by:
dpk_wal earned 2000 total points
ID: 39708782
Logs generated by different daemon have different keywords. For webfiltering we can filter logs on keyword WEBFILTER_ using CLI as below:
set system syslog file webfilter-log match WEBFILTER_ any any

Here we create syslog file named webfilter-log.

Now we can create this file on the SRX itself and then create a shell script which would FTP/SCP file to the designated server [using crontab] and then delete the file from SRX.
Once the file is on FTP/SCP server there can be another script running which would pick and email the file.
OR we can have SRX send logs to a remote syslog server and there you can work on the logs as you need.

Also, have a look at KB: http://kb.juniper.net/KB28213

Thank you.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The use of stolen credentials is a hot commodity this year allowing threat actors to move laterally within the network in order to avoid breach detection.
In this article, WatchGuard's Director of Security Strategy and Research Teri Radichel, takes a look at insider threats, the risk they can pose to your organization, and the best ways to defend against them.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Suggested Courses

877 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question