HP VPN Firewall Appliances System Management and Maintenance Configuration Guide
100
Export Version 3 logs to log server : enabled
Source address of exported logs : 2.2.2.2
Address of log server : 1.2.3.6 (port: 2000)
total Logs/UDP packets exported : 112/87
Logs in buffer : 6
Troubleshooting user logging
Symptom 1: No user log is exported
• Analysis: No export approach is specified.
• Solution: Configure user logging to export user logs to the information center or to the log server.
Symptom 2: User logs cannot be exported to log server
• Analysis: Both of the export approaches are configured.
• Solution: Restore to the default, and then configure the IP address and UDP port number of the log
server.
Configuring session logging
This section describes how to configure session logging in the Web interface. For information about
configuring session logging at the CLI, see Access Control Configuration Guide and Access Control
Command Reference.
Session logging records users' access information, IP address translation information, and traffic
information, and can output the records in a specific format to a log host, allowing administrators to
perform security auditing.
Session logging records an entry for a session if it reaches the specified threshold. Session logging
supports two categories of thresholds:
• Time threshold—When the lifetime of a session reaches this threshold, a log entry is output for the
session.
• Traffic threshold—The traffic threshold can be in units of the number of bytes or the number of
packets. When the traffic of a session reaches the specified number of bytes or packets, a log entry
is output for the session.
For more information about session management, see Access Control Configuration Guide.
Session logs are output in the format of user logs. To view session logs, you also need to configure user
logging.
Session logging configuration task list
Task Remarks
Configuring a session logging
policy
Required.
Configure a session logging policy, specifying the source zone and
destination zone of the sessions and the ACL for filtering log entries.
By default, no session logging policy exists.