?
Solved

Sonicwall TZ 100: no logging?

Posted on 2014-01-20
7
Medium Priority
?
675 Views
Last Modified: 2016-11-23
Hi,

I just upgraded my Sonicwall TZ 100 to latest update. Now it appears to be Dell instead of sonicwall. Fine for me. However, when I try to see logging (regarding case http://www.experts-exchange.com/Hardware/Networking_Hardware/Firewalls/Q_28339357.html in which I added a rule from lan to x2 allow any) I don't see any logging appearing. Last logging was from 10 minutes ago, that's it.

Any changes I should make to see logfiles? I want to see where my traffic gets blocked.

Please advise.
J.
0
Comment
Question by:janhoedt
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
7 Comments
 
LVL 26

Expert Comment

by:Blue Street Tech
ID: 39795554
Hi janhoedt,

Unless you have ViewPoint or Analyzer installed & setup you will not be able to see historical logs once you update your firmware. But I'd assume you'd be able to easily duplicate whatever you were seeing.

Let me know if you have any other questions!
0
 

Author Comment

by:janhoedt
ID: 39795581
So no default historical logging UNLESS you pay a subscription?!
0
 
LVL 26

Assisted Solution

by:Blue Street Tech
Blue Street Tech earned 1000 total points
ID: 39795587
Well there is historical logging but no security appliance that I know of have a built-in dB to handle such a request - the log file is just too big. SonicWALL by default has historical log data natively until either the log gets full (at which point it's then flushed) or you reboot the unit.

If you are looking to capture historical logs without a license you can setup SMTP automation and have the logs send via email to yourself when they are full.

Conversely, the licensing gives you a full application that sits on a server or PC and then transmits to a SQL dB.
0
Are You Ready for GDPR?

With the GDPR deadline set for May 25, 2018, many organizations are ill-prepared due to uncertainty about the criteria for compliance. According to a recent WatchGuard survey, a staggering 37% of respondents don't even know if their organization needs to comply with GDPR. Do you?

 
LVL 8

Accepted Solution

by:
amatson78 earned 1000 total points
ID: 39795688
Diverseit is correct, when yo flash a firmware all historical data is gone, only that which is offloaded can be viewed. You do not need Viewpoint any Syslog server can be setup to receive data.

That said if you can reproduce it make sure that whatever firewall access rule you setup has logging enabled? If you go into the rule there is a checkbox to "Enable Logging". If this is unchecked then you will not see it.

If this does not work can you give us some more detail, Screenshots, etc to help you out.



Cheers,
Alan
0
 

Author Comment

by:janhoedt
ID: 39796862
The only thing I was worried about is that I couldn't trace back something that happened 5 minutese ago (a land attack). Apparently logging is now working correctly. Probably related to fresh upgrade of Sonicwall. Now ok.
0
 
LVL 26

Expert Comment

by:Blue Street Tech
ID: 39797030
Glad I could help and thanks for the points!
0
 
LVL 8

Expert Comment

by:amatson78
ID: 39797086
Thank you as well, glad to hear you have it working :)
0

Featured Post

Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as the high-speed power of the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Suggested Courses

649 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question