R3721-F3210-F3171-HP High-End Firewalls System Management and Maintenance Configuration Guide-6PW101
84
Task Command
Remarks
Clear flow logs in the cache. reset userlog flow logbuffer Available in user view
CAUTION:
Clearing user logs in the cache causes the loss of lo
g
information, so you are recommended not to clear
the cache unless you are sure you want to clear it.
User logging configuration example at the CLI
Network requirements
As shown in Figure 32, the log server is used to monitor User's access to the network.
Figure 32 Network diagram
Configuring the Firewall
# Configure IP addresses for the interfaces according to the network diagram, and make sure that User
and Firewall, and Firewall and the log server can reach each other. (Details not shown.)
# Set the user logging version to 3.0.
<Firewall> system-view
[Firewall] userlog flow export version 3
# Export User's user logs to the log server with IP address 1.2.3.6:2000.
[Firewall] userlog flow export host 1.2.3.6 2000
# Configure the source IP address of UDP packets carrying user logs as 2.2.2.2, so that the log server can
identify that the actions described in the log were on Firewall or on other devices.
[Firewall] userlog flow export source-ip 2.2.2.2
Verifying the configuration
# Display the configuration and statistics about user logs.
<Firewall> display userlog export
nat:
No userlog export is enabled
flow: