{Category}  
 

Configuring syslog on NetGear FWG114P

This article is very similiar to configuring Netgear FM114P because both devices are very similiar. The FWG114P Router supports Syslog in all Firmware Versions. In my sample I am using 1.0 Release 16 as shown in the screenshot below:

In my example, I am using the 192.168.0.x IP Range with the subnet mask 255.255.255.0. My router has the IP 192.168.0.10 and my Syslog Server the IP 192.168.0.1.

Enabling Syslog logging is quit simple, just login into the web configuration interface, and go to the Security->Logs site. There is a Syslog configuration part where you can enable "Send to this Syslog server IP address". Configure it to your Syslog Server (In my case 192.168.0.1).

Above the Syslog part you will find the logging options. Enable the options you want to be logged. But be careful with the "All incoming and outgoing traffic" options. This can make the router very laggy if you have a lot of traffic. For more technical details of the FWG114P Router, see this pdf document. Below is a screenshot, which shows how the configuration should look like.

It is usually a good Idea to reboot the router after changing this settings. The router sometimes has problems when applying the changes directly.

If you have configured WinSyslog or MonitorWare Agent on the Server 192.168.0.1, you should get Syslog messages send to your Syslog Server. If you are using the File Logging Action (See the product manual for help setting this up), you should get log files which looks like the following sample lines:

 

...
2003-12-22,11:05:41,2003-12-22,11:05:41,192.168.0.10,23,4, 
2003 Dec 22 02:09:04 (FWG114P-9c-47-96) 217.82.198.197 
TCP packet - Source:195.138.43.243,0 ,WAN - 
Destination:217.82.198.197,0 ,LAN [Drop] - [Fragment Attack]

2003-12-22,11:08:54,2003-12-22,11:08:54,192.168.0.10,4, 
2003 Dec 22 02:12:16 (FWG114P-9c-47-96) 217.82.198.197 
TCP packet - Source:192.168.1.10,0 ,WAN - 
Destination:217.82.198.197,0 ,LAN [Drop] - [Fragment Attack]
...

 

Still problems enabling syslog? Find the solution in our forum or post a question there!

Syslog messages generated by these products can be received by MonitorWare Agent and WinSyslog.

All information in this section is to the best of our knowledge but without warrenty of any kind. This is free information - use it at your sole risk.

[Back to Syslog Enabled Products]
MonitorWare
 Home
 The Products
MonitorWare Products
Product Comparison
Which one to Purchase?
Order and Pricing
Upgrade Insurance Info
News Releases
Version History
MonitorWare Tools
 Event Repository
 Download
 Reference library
General Information
Step-by-step guides
 - All
 - Installation and Configuration
 - Services related
 - Actions related
 - Central Monitoring
Common Uses
Syslog configuration
Syslog Log Samples
Security Reference
 Help
Support
Manual
FAQ
 - All
 - General questions
 - Configurations related
 - Monitorware Agent
 - Monitorware Console
Articles
Seminars Online
 - All
 - General
 - MonitorWare Console
 - MonitorWare Agent
 - WinSyslog related
 - EventReporter
 Order & pricing
Order now
Product Comparison
Pricing Information
Upgrade Insurance Info
Local Reseller
 Contact Us
 Search
 
 



Printer Version Send this page to a friend

Copyright © 1988-2005 Adiscon GmbH All rights reserved.
Contact us via Secure Web Response | Privacy Policy
Topic Links: syslog | Free Weblinks Directory