Watchguard Firebox X1000 Betriebsanweisung Seite 187
- Seite / 271
- Inhaltsverzeichnis
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
User Guide 171
CHAPTER 13 Setting Up Logging and
Notification
An event is any single activity that occurs at the Firebox, such as denying a
packet from passing through the Firebox. Logging is the recording of these
events to a log host. A notification is a message sent to the administrator by
the Firebox when an event occurs that indicates a security threat.
Notification can be in the form of email, a popup window on the
WatchGuard Security Event Processor (WSEP), a call to a pager, or the
execution of a custom program.
For example, WatchGuard recommends that you configure default packet
handling to issue a notification when the Firebox detects a port space
probe. When the Firebox detects one, the log host sends notification to the
network security administrator about the rejected packets. At this point,
the network security administrator can examine the logs and decide what
to do to further secure the organization’s network. Some possible courses
of action would be to:
• Block the ports on which the probe was attempted
• Block the IP address that is sending the packets
• Contact the ISP through which the packets are being sent
Logging and notification are crucial to an effective network security
policy. Together, they make it possible to monitor your network security,
identify both attacks and attackers, and take action to address security
threats and challenges. WatchGuard logging and notification features are
- WatchGuard 1
- System 1
- User Guide 1
- Notice to Users 2
- User Guide iii 3
- WatchGuard Technologies, Inc 4
- Firebox System Software 4
- End-User License Agreement 4
- User Guide v 5
- Contents 7
- User Guide ix 9
- User Guide xi 11
- User Guide xiii 13
- User Guide xv 15
- Introduction 17
- WatchGuard Firebox 18
- WatchGuard Control Center 18
- Minimum Requirements 19
- Web browser requirements 20
- Hardware requirements 20
- WatchGuard Options 21
- High Availability 22
- Mobile User VPN 22
- SpamScreen 22
- About this Guide 23
- and .idx files 24
- Service and Support 25
- LiveSecurity 26
- Broadcasts 26
- Activating the LiveSecurity 27
- Service 27
- The Account page appears 28
- LiveSecurity® Self Help Tools 29
- User Guide 13 29
- WatchGuard Users Forum 30
- Online Help 30
- Searching for topics 31
- Context-sensitive Help 32
- Product Documentation 33
- Assisted Support 33
- Gold Program 34
- Firebox Installation Services 34
- Training and Certification 35
- 20 WatchGuard Firebox System 36
- Getting Started 37
- Gathering Network Information 38
- Network addresses 39
- Chapter 3: Getting Started 40
- 24 WatchGuard Firebox System 40
- User Guide 25 41
- Routed configuration 42
- Drop-in configuration 43
- 28 WatchGuard Firebox System 44
- User Guide 29 45
- 30 WatchGuard Firebox System 46
- User Guide 31 47
- 32 WatchGuard Firebox System 48
- Cabling the Firebox 49
- 34 WatchGuard Firebox System 50
- Running the QuickSetup Wizard 51
- Reference 52
- Testing the connection 53
- Entering IP addresses 54
- What’s Next 55
- Firebox Basics 57
- Chapter 4: Firebox Basics 58
- 42 WatchGuard Firebox System 58
- Opening a Configuration File 59
- 44 WatchGuard Firebox System 60
- Saving a Configuration File 61
- 46 WatchGuard Firebox System 62
- Resetting Firebox Passphrases 63
- Setting the Firebox Model 64
- Setting the Time Zone 65
- 50 WatchGuard Firebox System 66
- Using Policy Manager to 67
- Configure Your Network 67
- The Policy Manager appears 68
- For more information on 69
- Enabling static PPPoE 71
- Configuring Drop-in Mode 72
- Defining External IP Aliases 72
- Adding Secondary Networks 73
- From Policy Manager: 74
- User Guide 59 75
- Adding a new subnet 76
- Modifying an existing subnet 76
- Removing a subnet 77
- Configuring Routes 78
- Defining a Host Route 79
- 64 WatchGuard Firebox System 80
- Using the WatchGuard 81
- Control Center 81
- Control Center Components 82
- QuickGuide 83
- Front panel 84
- Firebox and VPN tunnel status 85
- Branch Office VPN Tunnels 86
- Remote VPN Tunnels 87
- Red exclamation point 87
- Traffic Monitor 88
- Working with Control Center 89
- Flushing the ARP cache 90
- Connecting to a Firebox 90
- Changing the polling rate 91
- Specifying Always on Top 92
- Getting Help on the Web 92
- Manipulating Traffic Monitor 93
- Launching Policy Manager 94
- Launching Firebox Monitors 95
- Launching LogViewer 95
- Launching HostWatch 95
- Launching Historical Reports 95
- 80 WatchGuard Firebox System 96
- Configuring Network 97
- Address Translation 97
- Dynamic NAT 98
- 1 Click Add 100
- Using Simple Dynamic NAT 101
- User Guide 85 101
- 86 WatchGuard Firebox System 102
- Adding external IP addresses 103
- 88 WatchGuard Firebox System 104
- Using 1-to-1 NAT 105
- 90 WatchGuard Firebox System 106
- Proxies and NAT 107
- 92 WatchGuard Firebox System 108
- Configuring Filtered Services 109
- Incoming service guidelines 110
- Outgoing service guidelines 111
- 96 WatchGuard Firebox System 112
- Adding a service 113
- 4 Click Add 114
- User Guide 99 115
- Creating a new service 116
- 10 Click OK 117
- Deleting a service 118
- Defining Service Properties 119
- Adding service properties 120
- Working with wg_icons 121
- 1 Click the Incoming tab 122
- 2 Click Logging 122
- Service Precedence 123
- 108 WatchGuard Firebox System 124
- User Guide 109 125
- 110 WatchGuard Firebox System 126
- Configuring Proxied Services 127
- 112 WatchGuard Firebox System 128
- User Guide 113 129
- Blocking email content types 130
- User Guide 115 131
- 116 WatchGuard Firebox System 132
- User Guide 117 133
- 118 WatchGuard Firebox System 134
- 4 Click OK 135
- Selecting an HTTP Service 136
- User Guide 121 137
- 122 WatchGuard Firebox System 138
- GET / HTTP/1.1 139
- Adding the DNS Proxy Service 140
- 8 Click Close 141
- DNS file descriptor limit 141
- 126 WatchGuard Firebox System 142
- Creating Aliases and 143
- Implementing Authentication 143
- Using Aliases 144
- User Guide 129 145
- How User Authentication Works 146
- Authentication Server Types 147
- 132 WatchGuard Firebox System 148
- User Guide 133 149
- 134 WatchGuard Firebox System 150
- 2 Click the NT Server tab 151
- 5 Click OK 151
- 136 WatchGuard Firebox System 152
- User Guide 137 153
- 138 WatchGuard Firebox System 154
- User Guide 139 155
- The default is 1645 156
- SecurID server 156
- Protecting Your Network 157
- From Attacks 157
- Default Packet Handling 158
- User Guide 143 159
- Stopping IP options attacks 160
- Stopping SYN Flood attacks 160
- Changing SYN flood settings 161
- 146 WatchGuard Firebox System 162
- User Guide 147 163
- Return value 164
- Examples 164
- Blocking Sites 165
- Blocking a site permanently 166
- User Guide 151 167
- Option” on page 185 168
- Blocking Ports 169
- 154 WatchGuard Firebox System 170
- Blocking a port permanently 171
- Sites list appears 173
- 158 WatchGuard Firebox System 174
- Monitoring Firebox Activity 175
- 160 WatchGuard Firebox System 176
- BandwidthMeter 177
- ServiceWatch 177
- Status Report 178
- Firebox Monitors 179
- User Guide 163 179
- 164 WatchGuard Firebox System 180
- Interfaces 181
- 166 WatchGuard Firebox System 182
- HostWatch 183
- HostWatch display 184
- 1 Select File => Connect 185
- 1 Select File => Open 185
- 170 WatchGuard Firebox System 186
- Setting Up Logging and 187
- Notification 187
- Logging policy 188
- Notification policy 189
- Failover Logging 190
- Adding a log host 191
- Enabling Syslog logging 192
- Removing a log host 193
- Reordering log hosts 193
- Synchronizing log hosts 193
- 2000, or Windows XP 194
- User Guide 179 195
- Viewing the WSEP application 196
- User Guide 181 197
- 182 WatchGuard Firebox System 198
- 1 Click the Log Files tab 199
- Reference Guide 200
- 1 Select Setup => Name 201
- 186 WatchGuard Firebox System 202
- User Guide 187 203
- 190 WatchGuard Firebox System 206
- Reviewing and Working with 207
- Log Files 207
- Viewing Files with LogViewer 208
- User Guide 193 209
- 194 WatchGuard Firebox System 210
- Displaying and Hiding Fields 211
- 196 WatchGuard Firebox System 212
- Working with Log Files 213
- Copying log files 214
- Setting log encryption keys 215
- 200 WatchGuard Firebox System 216
- User Guide 201 217
- 202 WatchGuard Firebox System 218
- Generating Reports of 219
- Network Activity 219
- Creating and Editing Reports 220
- Specifying a Report Time Span 221
- Specifying Report Sections 222
- Consolidating Report Sections 222
- The default is 10 223
- The default is 100 223
- 208 WatchGuard Firebox System 224
- Using Report Filters 225
- Creating a new report filter 226
- Editing a report filter 226
- Deleting a report filter 227
- Applying a report filter 227
- Scheduling a report 227
- Manually running a report 228
- Report sections 228
- User Guide 213 229
- 214 WatchGuard Firebox System 230
- Consolidated sections 231
- 216 WatchGuard Firebox System 232
- Controlling Web Site Access 233
- 218 WatchGuard Firebox System 234
- Add an HTTP service 235
- Configuring logging 235
- Activating WebBlocker 236
- User Guide 221 237
- 1 Click the WB: Schedule tab 238
- Setting privileges 239
- 224 WatchGuard Firebox System 240
- User Guide 225 241
- Installing Scheduled Tasks 242
- User Guide 227 243
- 228 WatchGuard Firebox System 244
- Connecting with Out-of-Band 245
- Management 245
- 230 WatchGuard Firebox System 246
- User Guide 231 247
- 232 WatchGuard Firebox System 248
- OOB time-out disconnects 249
- 234 WatchGuard Firebox System 250
- Troubleshooting Firebox 251
- Connectivity 251
- User Guide 229 253
- Sys B: Flickering 255
- Armed: Steady 255
- Armed light: Steady 256
- You should get a reply 257
Verwandte Produkte und Handbücher für Vernetzung Watchguard Firebox X1000
Vernetzung Watchguard V10.0 Betriebsanweisung
(25 Seiten)
(25 Seiten)
Vernetzung Watchguard V10 Betriebsanweisung
(14 Seiten)
(14 Seiten)
Vernetzung Watchguard V10.0 Betriebsanweisung
(322 Seiten)
(322 Seiten)
Vernetzung Watchguard V10.0 Spezifikationen
(23 Seiten)
(23 Seiten)
© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.307 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern