More Related Content
Similar to Logging intro (20)
More from Aravindan A (15)
Logging intro
- 2. Logging - Filters
• Quickly search specific typesof log entries
• Filters canbe saved forlater use
• Rexexpcanbeused
• Canbe exportedto CSVFiles
CSV
export
• 7 – System Administration
- 3. Logging - Syslog
WAF
Syslog
• ArcSight
• QRadar
• Symantec SIM
• RSA enVision
• Splunk
• NCSA
• W3C
local1
local5
local7
Connection Type
• UDP
• TCP
• SSL
• All WAF logs canbesentto amaximum of 3 Syslog servers
• 7 – System Administration
- 4. Reports
• Reportscan begeneratedbasedonall logged information
• Securityreports: coverwebattackprevention activity
• Administrator Auditreports: coverserver detailsandthelogin/logout
activitiesperformedbydifferentuserroles
• Trafficreports: coverwebtraffic activities
• Configuration Summaryreports: detailsofconfigurationsettings
• PCIreports: detailcompliancewith PCIstandards
• Canbescheduledand delivered to specific destinations
• Email addresses, FTPservers
• 7 – System Administration