Firewall Logging
To save Firewall logs, you must first create a bucket in Object Storage to save the logs and set the bucket as the log repository in Firewall Logging, then set up log saving on the Firewall details page, and the Firewall logs will be saved in the Object Storage bucket.
To save the firewall log, set it up in the following order.
- You can create a bucket in Object Storage to store Firewall logs or use an existing bucket. To create a bucket, refer to Object Storage creation.
- To set this bucket as the log repository for Firewall Logging, see Using Firewall Logging log repository.
- To set the log storage to use in the Firewall detailed inquiry, please refer to Firewall Log Storage Usage.
Firewall Logging Configure log storage settings
To set the log saving status of Firewall to use, you must first set the log storage in Firewall Logging.
To enable the Firewall Logging log storage, follow the procedure below.
- Click on the menu for all services > Management > Network Logging > Firewall Logging. It moves to the Firewall Logging list page.
- Firewall Logging list page, click the top Log Storage Settings button. Move to the Log Storage Settings popup window.
- Log Storage Settings In the popup window, select the Log Storage Bucket. Once the bucket is selected, the Log Storage Path will be displayed.
- In the Log Storage Settings popup window, check the Log Storage Bucket and Log Storage Path, then click the OK button.
- Check the message in the Notification pop-up window, then click the Confirm button.
Firewall Logging list inquiry
If you set the Firewall Logging log storage bucket, you can retrieve the Firewall Logging list.
To view the Firewall Logging list, follow these steps.
- Click on the menu for all services > Management > Network Logging > Firewall Logging. It moves to the Firewall Logging list page.
- Firewall Logging list page, please check the resources in use and the log storage target.
Division Detailed Description Resource ID Firewall ID Save Target Firewall Name Save Registration Time Firewall Log Storage Registration Time Table. Firewall Logging list itemsNoteAfter setting the Firewall Logging log storage, you must set the log storage to use in the Firewall detail inquiry for log storage to start. For more detailed information, please refer to Using Firewall Log Storage.
Firewall Logging Check detailed contents
Please check the detailed contents of the saved Log based on the following contents.
Saved log example: 2024-10-11T11:23:43,deny,0,17,4.1.1.100,45499,192.168.10.10,53
| Division | Description |
|---|---|
| 2024-10-11T11:23:43 | The date and time when the log occurred (2024-10-11, 11:23:43) |
| deny | action (deny / accept) |
| 0 | The Rule ID (Policy ID) where the log occurred on the firewall |
| 17 | IP Protocol ID
|
| 4.1.1.100 | Source IP |
| 45499 | Departure Port |
| 192.168.10.10 | Destination IP |
| 53 | Destination Port |
Firewall Logging Disable log storage setting
You can set the log storage to not used in Firewall Logging.
To set the log storage to not used for Firewall Logging, follow the next procedure.
- Click on the menu for all services > Management > Network Logging > Firewall Logging. It moves to the Firewall Logging list page.
- Firewall Logging list page, click the top Log Storage Settings button. Move to the Log Storage Settings popup window.
- In the 로그 저장소 설정 popup window, select 로그 저장소 버킷 as 미사용 and click the 확인 button.
- Log storage settings can be changed when there is no log storage target.
- To change the log storage bucket, first change the setting to inactive, then you can change it by setting it to active again.