• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 977
  • Last Modified:

Watchguard XTM 520 Log's

We have a Watchguard XTM 520 with spamBLOCKER and Gateway AV enabled for email traffic. Is there a way to view log files associated with these services inside the web manager?
1
jvillareal78
Asked:
jvillareal78
1 Solution
 
btanExec ConsultantCommented:
On the Firebox System Manager (FSM) Traffic Monitor tab, you see log messages from your XTM device as they occur. This include Subscription Services tab that has current Firebox or XTM device statistics about these subscription services such as the gateway AV and Spamblocker, if installed.
http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#en-US/fsm/security_subscriptions_wsm.html%3FTocPath%3DMonitor%2520Your%2520Device%7CSubscription%2520Services%2520Statistics%25C2%25A0(Subscription%2520Services)%7C_____0

so far i do not see if native log type are pertaining to the details log of those services, but more of the statistic log that is mentioned above.  Ideally you should have a log server and configured to receive log e.g.  configure your Firebox or XTM device to generate log messages for events that occur at the device,

https://www.watchguard.com/help/docs/webui/xtm_11/en-US/index.html#en-US/logging/logging_to_log_server_about_web.html%3FTocPath%3DLogging%2520and%2520Notification%7C_____2
http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#en-US/logging/set_up_logging_on_device_wsm.html

...  and view those log message from log server (via connect to WatchGuard WebCenter) onwards

http://www.watchguard.com/help/docs/wsm/xtm_11/en-US/index.html#cshid=en-US/logging/log_mgr_view_device_wsm.html

For example for SpamBlocker, if you want to send a log message each time spamBlocker takes an action, select the Send a log message check box for the action. If you do not want to record log messages for an action, clear this check box.

For example for Gateway AV, it can have Enable debug log messages (not really recommendation to be enabled) for diagnostic messages in times of Technical Support requesting them for troubleshooting.
0
 
jvillareal78Author Commented:
That is what we were afraid of. Looks like we are setting up a syslog server.
0

Featured Post

KuppingerCole Reviews AlgoSec in Executive Report

Leading analyst firm, KuppingerCole reviews AlgoSec's Security Policy Management Solution, and the security challenges faced by companies today in their Executive View report.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now