"Alarm Log" exclusion

Options
mLipok
mLipok Posts: 4
Friend Collector First Comment
edited April 2021 in Security
On dashboard I see many notyfication about connection from local host to DNS servers and what is more freak, even connection from work station to ZYXELL at 192.168.1.1:443 

Can I add some exclusion or filters to preset which Logs should be notified ?

All Replies

  • Blabababa
    Blabababa Posts: 151  Master Member
    First Anniversary Friend Collector First Answer First Comment
    Options
    Don't understand the meaning. Can you explain more with some examples(ex. screenshot..)
  • mLipok
    mLipok Posts: 4
    Friend Collector First Comment
    Options

    on dashboard, there is panel called: "The Latest Alert Logs"

    Question 1:

    Why in this Panel I see so many proper DNS connection ?

    This connection looks like normal connection from station to my DNS Server.

    Question 2:

    Why connection to USG  at 192.168.1.1:443  from Workstation is notified in "The Latest Alert Logs"

  • Zyxel_Cooldia
    Zyxel_Cooldia Posts: 1,450  Zyxel Employee
    First Anniversary 10 Comments Friend Collector First Answer
    Options

    Hi @mLipok ,

    Please see the comments in line.

    Question 1:Why in this Panel I see so many proper DNS connection ?

    [I guess you create a security policy for DNS service, and set the rule to “log alert” ]

    Question 2:Why connection to USG at 192.168.1.1:443 from Workstation is notified in "The Latest Alert Logs"

    [If the lan side client is trying to access device Web GUI, and log in fail, it will have alert log for failed login event]

    Can you take a screenshot about the event log? It would be better to understand what the log is.

Categories

Security Highlight


Read more

Security Help Center

EnglishTiếng ViệtРусскийไทย中文(台灣)