Solved

Sonicwall TZ 100: no logging?

Posted on 2014-01-20
7
663 Views
Last Modified: 2016-11-23
Hi,

I just upgraded my Sonicwall TZ 100 to latest update. Now it appears to be Dell instead of sonicwall. Fine for me. However, when I try to see logging (regarding case http://www.experts-exchange.com/Hardware/Networking_Hardware/Firewalls/Q_28339357.html in which I added a rule from lan to x2 allow any) I don't see any logging appearing. Last logging was from 10 minutes ago, that's it.

Any changes I should make to see logfiles? I want to see where my traffic gets blocked.

Please advise.
J.
0
Comment
Question by:janhoedt
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
7 Comments
 
LVL 25

Expert Comment

by:Diverse IT
ID: 39795554
Hi janhoedt,

Unless you have ViewPoint or Analyzer installed & setup you will not be able to see historical logs once you update your firmware. But I'd assume you'd be able to easily duplicate whatever you were seeing.

Let me know if you have any other questions!
0
 

Author Comment

by:janhoedt
ID: 39795581
So no default historical logging UNLESS you pay a subscription?!
0
 
LVL 25

Assisted Solution

by:Diverse IT
Diverse IT earned 250 total points
ID: 39795587
Well there is historical logging but no security appliance that I know of have a built-in dB to handle such a request - the log file is just too big. SonicWALL by default has historical log data natively until either the log gets full (at which point it's then flushed) or you reboot the unit.

If you are looking to capture historical logs without a license you can setup SMTP automation and have the logs send via email to yourself when they are full.

Conversely, the licensing gives you a full application that sits on a server or PC and then transmits to a SQL dB.
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 
LVL 8

Accepted Solution

by:
amatson78 earned 250 total points
ID: 39795688
Diverseit is correct, when yo flash a firmware all historical data is gone, only that which is offloaded can be viewed. You do not need Viewpoint any Syslog server can be setup to receive data.

That said if you can reproduce it make sure that whatever firewall access rule you setup has logging enabled? If you go into the rule there is a checkbox to "Enable Logging". If this is unchecked then you will not see it.

If this does not work can you give us some more detail, Screenshots, etc to help you out.



Cheers,
Alan
0
 

Author Comment

by:janhoedt
ID: 39796862
The only thing I was worried about is that I couldn't trace back something that happened 5 minutese ago (a land attack). Apparently logging is now working correctly. Probably related to fresh upgrade of Sonicwall. Now ok.
0
 
LVL 25

Expert Comment

by:Diverse IT
ID: 39797030
Glad I could help and thanks for the points!
0
 
LVL 8

Expert Comment

by:amatson78
ID: 39797086
Thank you as well, glad to hear you have it working :)
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Migrating to Exchange 2016 - AD/DNS question 8 71
VLAN Questions 3 68
Will this machine do 4K video? 4 41
Setting up two DCs 4 45
Is your computer hacked? learn how to detect and delete malware in your PC
This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question