If you use Smoothwall Appliance as your Firewall, you can send Firewall logs to Police CyberAlarm to help them monitor and prevent malicious activity on the Internet.
By default, this includes logs for 'bad external traffic'. This is inbound traffic that does not match a Port Forward policy, which Smoothwall rejects or drops.
Before you begin
- You must have a CyberAlarm collector on your network for Smoothwall to send the logs to.
- (Optional) You can include logs for Port Forward policies, Firewall rules and Smoothwall access rules.
- Edit your Port Forward policies to select the Log connection checkbox.
- Edit your Firewall rules and Smoothwall access rules to select the Log checkbox.
Important
Generating these logs can impact the performance of your Smoothwall Appliance.
Send the logs
- Go to Reports > Logs > Log settings.
- Select the Remote firewall syslog checkbox.
- Enter the IP address of the CyberAlarm collector in the Firewall Syslog server field.
- Select Save.