Configure circular logging
Its a good idea to setup display 01 as (drop-deny)
Create a new rule call it drop/deny
Add a filter choose simple filter put in "drop" "deny"
Add the action of display and choose display 01
In the setup section go to display 01 and update the name to display 01 (drop-deny)
You can add other actions like send email etc
You can create lots of displays for VPN troubleshooting etc
Also enable the highlighting options, defaults are decent, you can edit as needed.
You can also tick an option to auto scale width to fit messages
I like this file name
E:\syslog\%IPAdd4-%DateISO.txt
Worth installing tail also. (cygwin is good)
Worth installing tail also. (cygwin is good)
No comments:
Post a Comment