Access rules and logging
ittech99 Newbie ✭
I´m trying to log outgoing smtp connection attempts without any luck.
I have a working access rule, LAN to WAN. Deny port 25
Under Log settings I assume the LAN TCP Deny would correspond to the Deny rule but as you can see it shows 0 matches:
Log Settings, Network, TCP
What am I missing here?
Category: High End Firewalls
Hey! You will be signed out in 60 seconds due to inactivity. Click here to continue using the site.
I tried to test something similar. I get logs as 'TCP connection dropped' which is an event under Network -> TCP -> TCP Packets dropped. The notes tells that it is not allowed by a policy. You can change this to alert level for better visibility. By default it is on Inform.
Sample log message:
I hope that helps.
Technical Support Advisor, Premier Services
You should see the logs for the SMTP - TCP 25 dropped packets in SonicWall as "TCP connection dropped" as shown below,
Please make sure you have the Log Sub Category "TCP Packets Dropped" under Network | Network Access | TCP as shown below,
Hope this helps.
Technical Support Advisor - Premier Services