Thanks Asad and Peter.
I can see no traffic is being exported from the SRX by checking the
security flow session. Below is my configuration just to make sure this
how you make it work with syslog server.
[edit]
admin@RFW1# show security log
mode stream;
format sd-syslog;
source-address 10.0.254.
Hi,
The configuration you specified is good enough to send APPTRACK logs to
syslog server. You may verify using wireshark whether you are actually
receiving those or not.As mentioned by Wood,log message will start with
APPTRACK_SESSION_.
You may view these logs in any syslog server. however you'l
> 1. Anyone used to setup NFSEN for this ?
Nfsen doesn't know how to interpret the syslog data sent by the SRX, in either
format (syslog or sd-syslog). Additionally Nfsen doesn't have fields to store
the more interesting data on disk (L7 app/nested app).
>2. Anyway to see that FW is sending the
Hi All,
I'm trying to configure AppTrack on SRX210H and 210HE. I've done the
license thing and also downloaded and installed Application Identification.
the last step is to configure that AppTrack as below:
admin@RFW1# show security log
format syslog;
source-address 10.0.250.33;
stream AppTrack
4 matches
Mail list logo