Firewall Logging
To store Firewall logs, you must first create a bucket in Object Storage to store the logs, set the bucket as the log storage in Firewall Logging, and then set log storage on the Firewall Details page to store Firewall logs in the Object Storage bucket.
To store Firewall logs, set up according to the following order:
- To store firewall logs, you can create a bucket in Object Storage or use an already created bucket. To create a bucket, refer to Creating Object Storage.
- To set the bucket as the log storage in Firewall Logging, refer to Using Firewall Logging Log Storage.
- To set log storage status to Use in Firewall details, refer to Using Firewall Log Storage.
Setting Up Firewall Logging Log Storage
To set the Firewall log storage status to Use, you must first set the log storage in Firewall Logging.
To set up Firewall Logging log storage, follow these steps:
- Click the All Services > Management > Network Logging > Firewall Logging menu. You will be redirected to the Firewall Logging List page.
- On the Firewall Logging List page, click the Log Storage Settings button at the top. You will be redirected to the Log Storage Settings popup window.
- In the Log Storage Settings popup window, select the Log Storage Bucket. When you select a bucket, the Log Storage Path is displayed.
- In the Log Storage Settings popup window, check the Log Storage Bucket and Log Storage Path, and then click the Confirm button.
- Check the message in the Notification popup window and click the Confirm button.
Viewing Firewall Logging List
When you set the Firewall Logging log storage bucket, you can view the Firewall Logging list.
To view the Firewall Logging list, follow these steps:
- Click the All Services > Management > Network Logging > Firewall Logging menu. You will be redirected to the Firewall Logging List page.
- On the Firewall Logging List page, check the resources in use and log storage targets.
Division Description Resource ID Firewall ID Storage Target Firewall name Storage Registration Date Firewall log storage registration date Table. Firewall Logging list items
Checking Firewall Logging Detailed Content
Refer to the following content to check the detailed content of stored logs.
Stored log example: 2024-10-11T11:23:43,deny,0,17,4.1.1.100,45499,192.168.10.10,53
| Division | Description |
|---|---|
| 2024-10-11T11:23:43 | Date and time when the log occurred (2024-10-11, 11:23:43) |
| deny | Action (deny / accept) |
| 0 | Firewall Rule ID (Policy ID) where the log occurred |
| 17 | IP Protocol ID
|
| 4.1.1.100 | Source IP |
| 45499 | Source Port |
| 192.168.10.10 | Destination IP |
| 53 | Destination Port |
Setting Firewall Logging Log Storage to Not Use
You can set the log storage in Firewall Logging to not use.
To set Firewall Logging log storage to not use, follow these steps:
- Click the All Services > Management > Network Logging > Firewall Logging menu. You will be redirected to the Firewall Logging List page.
- On the Firewall Logging List page, click the Log Storage Settings button at the top. You will be redirected to the Log Storage Settings popup window.
- In the Log Storage Settings popup window, select Not Use for the Log Storage Bucket and click the Confirm button.
- Log storage settings can be changed when there is no log storage target.
- To change the log storage bucket, first change the setting to not use. Then you can change it by setting it to use again.