Syslog : Name of the rule ? And log traffic without rule checked.

ExSL · ‎03-24-2023

Hello,

We're trying to get network log. We would like to know to see what rules block traffic. We install a syslog and nothing. Nor more information.
So we decide to uncheck all "syslog" box on the L3 firewall. And we keep receiving log.

Any help ?

Best regards,

ww · ‎03-24-2023

You need to select flows at the syslog settings. Then you get all flows. And additional all the firewall logs from the rule you enabled for logging

alemabrahao · ‎03-24-2023

I don't understand what you want, do you want to receive messages via syslog or not?

ExSL · ‎03-24-2023

I want to receive log from a specific rule.

alemabrahao · ‎03-24-2023

Have you checked if there is any Hit count?

ExSL · ‎03-24-2023

We found the issue, when we turn on one rule, we have to filter.
Like "tail -f message | grep firewall" otherwise we've a lot of useless "flow" logs.