unifios-utilities icon indicating copy to clipboard operation
unifios-utilities copied to clipboard

Published 20 hours ago verified publisher icon unifi-utilities

UDM Pro firewall deny/accept logs to syslog server

Open dpackham opened this issue 3 years ago • 2 comments

I like how the [ipt-enable-logs] update the logs to have rule names and all. is there a way to get these logs out to a Syslog server? maybe edit the syslog.conf file?

dpackham avatar Feb 07 '22 02:02 dpackham

It's built into the unifi network app. On 7.0.23: Just go to settings > system. Under "System Logging", enable "Syslog" and specify your syslog server and port. The "Syslog & Netconsole Logs" option will save logs locally on the UDM instead of a syslog server. Leave that disabled.

This sends more than just the firewall logs though so you'll have to setup your syslog server to only save what you want.

smitty-sec avatar Mar 18 '22 14:03 smitty-sec

it is to a small degree as the logs are a bit lame. I would like to get ALL logs to a remote Syslog server like /var/logs/messages and the Suricata logs as well.

dpackham avatar Apr 12 '22 20:04 dpackham