security-events-toggle – a family of commands for configuring security event logging

ngfw> security-events-toggle

Go to the security event logging configuration submenu.

ngfw> security-events-toggle> enable <event_type>

Enable logging for event of the specified type.

Example:

ngfw> security-events-toggle> enable journal_SB_type13

List of event types:

• journal_SB_type13 are security events related to updating the database of malware (virus) indicators.
• journal_SB_type21 are security events related to the management of the computer attack detection and blocking tool.
• journal_SB_type25 are security events related to network traffic filtering.
• journal_SB_type26 are security events related to network addressing changes.
• journal_SB_type27 are security events related to hardware addressing changes.
• journal_SB_type34 are security events related to the modification of information security measure settings.
• journal_SB_type35 are security events related to setting and changing of system time.
• journal_SB_type50 are security events related to integrity control.
• journal_SB_type52 are security events related to the monitoring of information security measure operational status.
• journal_SB_type53 are security events related to the termination (fault, failure) of software, hardware or software-and-hardware information security measure.
• journal_SB_type54 are security events related to the management (administration) of security functions.
• journal_SB_type55 are security events related to the management of security event logs (records).
• journal_SB_type68 are security events related to network switch management.
• journal_SB_type70 are security events related to the operation of the cluster.

ngfw> security-events-toggle> disable <event_type>

Disable logging for event of the specified type.

Example:

ngfw> security-events-toggle> disable journal_SB_type13

ngfw> show security-events-toggle

Show current security event logging settings.

Example:

ngfw> show security-events-toggle
{
  "ngfw-security-events-toggle:security-events-toggle": {
    "events": {
      "journal_SB_type13": true,
      "journal_SB_type21": false,
      "journal_SB_type25": false,
      "journal_SB_type26": false,
      "journal_SB_type27": false,
      "journal_SB_type34": false,
      "journal_SB_type35": true,
      "journal_SB_type50": false,
      "journal_SB_type52": false,
      "journal_SB_type53": true,
      "journal_SB_type54": false,
      "journal_SB_type55": false,
      "journal_SB_type68": false,
      "journal_SB_type70": false
    }
  }
}

| Prev | Home | Next |