Logging Through a BOVPN Tunnel

If you have Fireboxes at two sites connected with a branch office VPN tunnel, you can enable the devices at both sites to send log messages to a WatchGuard Log Server located at one of the sites. To use the same Log Server for both sites, you can add tunnel routes to the configuration of both devices.

For example, consider an organization that has Fireboxes at two sites, Site A and Site B, connected with a branch office VPN tunnel. The administrator wants the Firebox at Site B to send log messages to the WatchGuard Log Server located at Site A.

Add a Tunnel Route to the Site A BOVPN Configuration

At Site A, you must add a tunnel route for traffic through the BOVPN tunnel from Site B to the local Log Server.

Add a Tunnel Route to the Site B BOVPN Configuration

At Site B, you must also add a tunnel route for traffic through the BOVPN tunnel between Site B and the Log Server at Site A.

Configure Logging on the Device at Site B

After you configure the tunnel routes, you can configure the Firebox at Site B to send log messages to the IP address of the Log Server located at Site A.

For more information about how to configure logging in Fireware Web UI, see Send Log Messages to a WatchGuard Log Server (Web UI).

For more information about how to configure logging in Policy Manager, see Define Where the Firebox Sends Log Messages (WSM).

Give Us Feedback     Get Support     All Product Documentation     Technical Search