Zyxel P-2602HW-D1A Router Manual PDF (Setup & Configuration Guide)

Page 296 / 427 Scroll up to view Page 291 - 295

P-2602H(W)(L)-DxA Series User’s Guide

296

Chapter 24 Logs

Figure 166

View Log

The following table describes the fields in this screen.

24.3

Configuring Log Settings

Use the

Log

Settings

screen to configure to where the ZyXEL Device is to send logs; the

schedule for when the ZyXEL Device is to send the logs and which logs and/or immediate

alerts the ZyXEL Device is to record. See

Section 24.1 on page 295

for more information.

To change your ZyXEL Device’s log settings, click

Maintenance > Logs

>

Log Settings

. The

screen appears as shown.

Table 115

View Log

LABEL

DESCRIPTION

Display

The categories that you select in the

Log Settings

screen display in the drop-down

list box.

Select a category of logs to view; select

All Logs

to view logs from all of the log

categories that you selected in the

Log Settings

page.

Email Log Now

Click

Email Log Now

to send the log screen to the e-mail address specified in the

Log Settings

page (make sure that you have first filled in the

E-mail Log Settings

fields in

Log Settings

).

Refresh

Click

Refresh

to renew the log screen.

Clear Log

Click

Clear Log

to delete all the logs.

#

This field is a sequential value and is not associated with a specific entry.

Time

This field displays the time the log was recorded.

Message

This field states the reason for the log.

Source

This field lists the source IP address and the port number of the incoming packet.

Destination

This field lists the destination IP address and the port number of the incoming

packet.

Notes

This field displays additional information about the log entry.

Page 297 / 427

P-2602H(W)(L)-DxA Series User’s Guide

Chapter 24 Logs

297

Alerts are e-mailed as soon as they happen. Logs may be e-mailed as soon as the log is full.

Selecting many alert and/or log categories (especially

Access Control

) may result in many e-

mails being sent.

Figure 167

Log Settings

The following table describes the fields in this screen.

Table 116

Log Settings

LABEL

DESCRIPTION

E-mail Log Settings

Mail Server

Enter the server name or the IP address of the mail server for the e-mail addresses

specified below. If this field is left blank, logs and alert messages will not be sent via

E-mail.

Page 298 / 427

P-2602H(W)(L)-DxA Series User’s Guide

298

Chapter 24 Logs

Mail Subject

Type a title that you want to be in the subject line of the log e-mail message that the

ZyXEL Device sends. Not all ZyXEL Device models have this field.

Send Log to

The ZyXEL Device sends logs to the e-mail address specified in this field. If this field

is left blank, the ZyXEL Device does not send logs via e-mail.

Send Alerts to

Alerts are real-time notifications that are sent as soon as an event, such as a DoS

attack, system error, or forbidden web access attempt occurs. Enter the E-mail

address where the alert messages will be sent. Alerts include system errors, attacks

and attempted access to blocked web sites. If this field is left blank, alert messages

will not be sent via E-mail.

Enable SMTP

Authentication

SMTP (Simple Mail Transfer Protocol) is the message-exchange standard for the

Internet. SMTP enables you to move messages from one e-mail server to another.

Select the check box to activate SMTP authentication. If mail server authentication is

needed but this feature is disabled, you will not receive the e-mail logs.

User Name

Enter the user name (up to 31 characters) (usually the user name of a mail account).

Password

Enter the password associated with the user name above.

Log Schedule

This drop-down menu is used to configure the frequency of log messages being sent

as E-mail:

•

Daily

•

Weekly

•

Hourly

•

When Log is Full

•

None

.

If you select

Weekly

or

Daily

, specify a time of day when the E-mail should be sent.

If you select

Weekly

, then also specify which day of the week the E-mail should be

sent. If you select

When Log is Full

, an alert is sent when the log fills up. If you

select

None

, no log messages are sent.

Day for Sending

Log

Use the drop down list box to select which day of the week to send the logs.

Time for Sending

Log

Enter the time of the day in 24-hour format (for example 23:00 equals 11:00 pm) to

send the logs.

Clear log after

sending mail

Select the checkbox to delete all the logs after the ZyXEL Device sends an E-mail of

the logs.

Syslog Logging

The ZyXEL Device sends a log to an external syslog server.

Active

Click

Active

to enable syslog logging.

Syslog IP

Address

Enter the server name or IP address of the syslog server that will log the selected

categories of logs.

Log Facility

Select a location from the drop down list box. The log facility allows you to log the

messages to different files in the syslog server. Refer to the syslog server manual for

more information.

Active Log and

Alert

Log

Select the categories of logs that you want to record.

Send Immediate

Alert

Select log categories for which you want the ZyXEL Device to send E-mail alerts

immediately.

Apply

Click

Apply

to save your customized settings and exit this screen.

Cancel

Click

Cancel

to return to the previously saved settings.

Table 116

Log Settings

LABEL

DESCRIPTION

Page 299 / 427

P-2602H(W)(L)-DxA Series User’s Guide

Chapter 24 Logs

299

24.4

SMTP Error Messages

If there are difficulties in sending e-mail the following error message appears.

“SMTP action request failed. ret= ??". The “??"are described in the following table.

24.4.1

Example E-mail Log

An "End of Log" message displays for each mail in which a complete log has been sent. The

following is an example of a log sent by e-mail.

•

You may edit the subject title.

•

The date format here is Day-Month-Year.

•

The date format here is Month-Day-Year. The time format is Hour-Minute-Second.

• "

End of Log

" message shows that a complete log has been sent.

Table 117

SMTP Error Messages

-1 means ZyXEL Device out of socket

-2 means tcp SYN fail

-3 means smtp server OK fail

-4 means HELO fail

-5 means MAIL FROM fail

-6 means RCPT TO fail

-7 means DATA fail

-8 means mail data send fail

Page 300 / 427

P-2602H(W)(L)-DxA Series User’s Guide

300

Chapter 24 Logs

Figure 168

E-mail Log Example

Subject:

Firewall Alert From

Date:

Fri, 07 Apr 2000 10:05:42

From:

[email protected]

To:

[email protected]

1|

Apr

7 00

|From:192.168.1.1

To:192.168.1.255

|default policy

|forward

|

09:54:03

|UDP

src port:00520 dest port:00520

|<1,00>

|

2|Apr

7 00 |From:192.168.1.131

To:192.168.1.255

|default policy

|forward

| 09:54:17 |UDP

src port:00520 dest port:00520

|<1,00>

|

3|Apr

7 00 |From:192.168.1.6

To:10.10.10.10 |match

|forward

| 09:54:19 |UDP

src port:03516 dest port:00053

|<1,01>

|

……………………………..{snip}…………………………………..

126|Apr

7 00 |From:192.168.1.1

To:192.168.1.255

|match

|forward

| 10:05:00 |UDP

src port:00520 dest port:00520

|<1,02>

|

127|Apr

7 00 |From:192.168.1.131

To:192.168.1.255

|match

|forward

| 10:05:17 |UDP

src port:00520 dest port:00520

|<1,02>

|

128|Apr

7 00 |From:192.168.1.1

To:192.168.1.255

|match

|forward

| 10:05:30 |UDP

src port:00520 dest port:00520

|<1,02>

|

End of Firewall Log

Rate

Popular Zyxel Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share