Solved

Watchguard XTM 520 Log's

Posted on 2014-07-22
2
951 Views
1 Endorsement
Last Modified: 2014-07-23
We have a Watchguard XTM 520 with spamBLOCKER and Gateway AV enabled for email traffic. Is there a way to view log files associated with these services inside the web manager?
1
Comment
Question by:jvillareal78
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 64

Accepted Solution

by:
btan earned 500 total points
ID: 40213534
On the Firebox System Manager (FSM) Traffic Monitor tab, you see log messages from your XTM device as they occur. This include Subscription Services tab that has current Firebox or XTM device statistics about these subscription services such as the gateway AV and Spamblocker, if installed.
http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#en-US/fsm/security_subscriptions_wsm.html%3FTocPath%3DMonitor%2520Your%2520Device%7CSubscription%2520Services%2520Statistics%25C2%25A0(Subscription%2520Services)%7C_____0

so far i do not see if native log type are pertaining to the details log of those services, but more of the statistic log that is mentioned above.  Ideally you should have a log server and configured to receive log e.g.  configure your Firebox or XTM device to generate log messages for events that occur at the device,

https://www.watchguard.com/help/docs/webui/xtm_11/en-US/index.html#en-US/logging/logging_to_log_server_about_web.html%3FTocPath%3DLogging%2520and%2520Notification%7C_____2
http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#en-US/logging/set_up_logging_on_device_wsm.html

...  and view those log message from log server (via connect to WatchGuard WebCenter) onwards

http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#cshid=en-US/logging/log_mgr_view_device_wsm.html

For example for SpamBlocker, if you want to send a log message each time spamBlocker takes an action, select the Send a log message check box for the action. If you do not want to record log messages for an action, clear this check box.

For example for Gateway AV, it can have Enable debug log messages (not really recommendation to be enabled) for diagnostic messages in times of Technical Support requesting them for troubleshooting.
0
 

Author Closing Comment

by:jvillareal78
ID: 40214621
That is what we were afraid of. Looks like we are setting up a syslog server.
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This program is used to assist in finding and resolving common problems with wireless connections.
Let's recap what we learned from yesterday's Skyport Systems webinar.
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

615 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question