Monday, April 16, 2018

How to enable log on Vyatta5600

Here is somewhat of reminder regarding how to set up log on Vyatta5600.

1. How to set log for firewall?


Type this command to activate log for default action of firewall. 
    
        vyatta@vyatta# set security firewall name <firewall name> default-log
Configuraion looks like following. 
     
 vyatta@vyatta1# show security firewall name <firewall name >
 name <firewall name> {
        default-action drop
+       default-log
        rule 1 {
                action accept
            ~ omitted bellow ~
    
Don't forget 'commit' and 'save'!

2. How to check log?


You can see log of default action of specified firewall. 
     
vyatta@vyatta:~$ show log firewall name <firewall name>
    
Sometimes above command is a little bit boring since there is no movement. If you need dynamic, you can type bellow command and monitor log in real time. 
     
vyatta@yatta:~$ monitor firewall name <firewall name>
    
Posted by at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)