Table 92: Self Log Entry Settings; Table 93: Email Server Settings For Log Entries; Forwarding Self Log Entries (Firewall Options); Configuring E-Mail Server Settings - Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1 Administration Manual

Configuring e-mail Server Settings

Copyright © 2010, Juniper Networks, Inc.

Forwarding Self Log Entries (Firewall Options)

Self log entries typically display information on traffic that was dropped by the managed
device or terminates on the device. Any packet that terminates at the device generates
a self log entry; Telnet, Ping, BGP, and OSPF connections all terminate at the device, and
trigger a self log entry.
A self log includes the date and time a packet was dropped, the source address of the
packet, the destination address of the packet, the duration for which the packet was
active, and the service associated with the packet. You can disable or enable logging of
dropped packets for specific traffic types, including ICMP, IKE, SNMP, and multicast
packets.
To configure self log entries, open a device configuration and select Report Settings >
General. Click the Firewall Options tab and configure the following settings. See Table
92 on page 719.

Table 92: Self Log Entry Settings

Setting
Log ICMP Packets to Self
Log IKE Packets to Self
Log SNMP Packets to Self
Log Multicast Packets to Self
Use the Email option to configure a managed device to send messages using e-mail
whenever a system event of Emergency, Alert, Critical, or Notification severity level occurs.
You can configure the e-mail and SMTP settings at the device level, or skip this section
and configure the GUI server to handle e-mail; see "Exporting to E-mail" on page 772.
To configure e-mail server settings and enable the device to send e-mail messages, open
a device configuration and select Report Settings > Email. Configure the following
settings. See Table 93 on page 719.

Table 93: Email Server Settings for Log Entries

Setting
Enable Notification for Alarms
Description
Creates a log entry for an ICMP (ping) packet that was dropped
or terminated at the device.
Creates a log entry for an IKE packet that was dropped or
terminated at the device. When negotiating an IKE key, the VPN
client communicates with the security device.
Creates a log entry for an SNMP packet that was dropped or
terminated at the device.
Creates a log entry for a multicast packet that was dropped or
terminated at the device.
Description
When alarm is enabled for a rule in the installed security policy
and traffic matches the rule, the device sends an e-mail
notification to the specified SMTP server.
Chapter 18: Logging
719