Security Group Logging
To store Security Group logs, you must first create a bucket in Object Storage to store the logs and then set the bucket as the log storage for Security Group Logging. After that, you can enable log storage in the Security Group details, and Security Group logs will start being stored in the Object Storage bucket.
To store Security Group logs, you need to follow these steps:
- You can create a new bucket in Object Storage for storing Security Group logs or use an existing bucket. To create a bucket, refer to Creating Object Storage.
- To set the bucket as the log storage for Security Group Logging, refer to Using Security Group Logging Log Storage.
- To enable log storage in the Security Group details, refer to Enabling Security Group Log Storage.
Using Security Group Logging Log Storage
To enable Security Group log storage, you must first set up the log storage in Security Group Logging.
- Click All Services > Management > Network Logging > Security Group Logging. You will be taken to the Security Group Logging List page.
- On the Security Group Logging List page, click the Log Storage Settings button at the top. You will be taken to the Log Storage Settings popup window.
- In the Log Storage Settings popup window, select the Log Storage Bucket. After selecting the bucket, the Log Storage Path will be displayed.
- In the Log Storage Settings popup window, confirm the Log Storage Bucket and Log Storage Path, and then click the Confirm button.
- Confirm the message in the Notification popup window and click the Confirm button.
Security Group Logging List
After setting up the Security Group Logging log storage bucket, you can view the Security Group Logging list.
- Click All Services > Management > Network Logging > Security Group Logging. You will be taken to the Security Group Logging List page.
Category RequiredDescription Resource ID Required Security Group ID Storage Target Required Security Group Name Storage Registration Date Required Security Group Log Storage Registration Date Table. Security Group Logging List Items
Checking Security Group Logging Content
Refer to the following content to check the stored log content.
- TCP / UDP
Example of stored log: 2024-10-11T02:18:39,drop,to-lport: tcp,198.19.65.2,6443,192.168.22.131,20427
| Category | Description |
|---|---|
| 2024-10-11T02:18:39 | Date and time when the log occurred (2024-10-11, 02:18:39) |
| drop | Action (drop / allow) |
| to-lport | Direction
|
| tcp | Protocol (tcp / udp / icmp / ip) |
| 192.168.65.2 | Source IP |
| 6443 | Source Port |
| 192.168.22.131 | Destination IP |
| 20427 | Destination Port |
- ICMP
Example of stored log: 2024-10-11T02:18:39,allow,to-lport: icmp,192.168.65.2,192.168.22.131,8
| Category | Description |
|---|---|
| 2024-10-11T02:18:39 | Date and time when the log occurred (2024-10-11, 02:18:39) |
| to-lport | Direction
|
| allow | Action (drop / allow) |
| icmp | Protocol (tcp / udp / icmp / ip) |
| 192.168.65.2 | Source IP |
| 192.168.22.131 | Destination IP |
| 8 | ICMP Type ID |
Disabling Security Group Logging Log Storage
You can disable Security Group Logging log storage.
- Click All Services > Management > Network Logging > Security Group Logging. You will be taken to the Security Group Logging List page.
- On the Security Group Logging List page, click the Log Storage Settings button at the top. You will be taken to the Log Storage Settings popup window.
- In the Log Storage Settings popup window, select Do not use for the Log Storage Bucket, and then click the Confirm button.