Solved

Watchguard XTM 520 Log's

Posted on 2014-07-22
2
906 Views
1 Endorsement
Last Modified: 2014-07-23
We have a Watchguard XTM 520 with spamBLOCKER and Gateway AV enabled for email traffic. Is there a way to view log files associated with these services inside the web manager?
1
Comment
Question by:jvillareal78
2 Comments
 
LVL 62

Accepted Solution

by:
btan earned 500 total points
ID: 40213534
On the Firebox System Manager (FSM) Traffic Monitor tab, you see log messages from your XTM device as they occur. This include Subscription Services tab that has current Firebox or XTM device statistics about these subscription services such as the gateway AV and Spamblocker, if installed.
http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#en-US/fsm/security_subscriptions_wsm.html%3FTocPath%3DMonitor%2520Your%2520Device%7CSubscription%2520Services%2520Statistics%25C2%25A0(Subscription%2520Services)%7C_____0

so far i do not see if native log type are pertaining to the details log of those services, but more of the statistic log that is mentioned above.  Ideally you should have a log server and configured to receive log e.g.  configure your Firebox or XTM device to generate log messages for events that occur at the device,

https://www.watchguard.com/help/docs/webui/xtm_11/en-US/index.html#en-US/logging/logging_to_log_server_about_web.html%3FTocPath%3DLogging%2520and%2520Notification%7C_____2
http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#en-US/logging/set_up_logging_on_device_wsm.html

...  and view those log message from log server (via connect to WatchGuard WebCenter) onwards

http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#cshid=en-US/logging/log_mgr_view_device_wsm.html

For example for SpamBlocker, if you want to send a log message each time spamBlocker takes an action, select the Send a log message check box for the action. If you do not want to record log messages for an action, clear this check box.

For example for Gateway AV, it can have Enable debug log messages (not really recommendation to be enabled) for diagnostic messages in times of Technical Support requesting them for troubleshooting.
0
 

Author Closing Comment

by:jvillareal78
ID: 40214621
That is what we were afraid of. Looks like we are setting up a syslog server.
0

Featured Post

Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

948 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now