Chapter 12: Setting Up Logging and Notification
The repeat count multiplied by the launch interval equals
the amount of time an event must continuously happen
before it is handled as a repeat notifier.
Setting logging and notification for a service
For each service added to the Services Arena, you can con-
trol logging and notification of the following events:
•
Incoming packets that are allowed
•
Incoming packets that are denied
•
Outgoing packets that are allowed
•
Outgoing packets that are denied
From Policy Manager:
1
Double-click a service in the Services Arena.
The Properties dialog box appears.
2
Click Logging.
The Logging and Notification dialog box appears. The options for
each service are identical; the main difference is based on
whether the service in question is for incoming, outgoing, or
bidirectional communication.
3
Modify logging and notification properties according
to your security policy preferences. Click OK.
Setting logging and notification for default
packet-handling options
When this option is selected, you can control logging and
notification properties for the following default packet-
handling options:
•
Spoofing attacks
•
IP options
•
Port probes
•
Address space probes
•
Incoming packets not handled
•
Outgoing packets not handled
218
WatchGuard Firebox System