the firewall will log security-related events such as denied incoming service requests, hacker probes, and administrator logins. if you enabled content filtering in the block sites menu, the logs page shows you when someone on your network tried to access a blocked site. if you enabled e-mail notification, you'll receive these logs in an e-mail message. if you don't have e-mail notification enabled, you can view the logs here. an example is shown below.

   

    figure 6-4: security logs menu

    log entries are described in table 6-5

    table 6-5:security log entry descriptions

   

    log action buttons are described in table 6-6

    table 6-6:security log action buttons

   

    selecting what information to include in the log

    besides the standard information listed above, you can choose to log additional information. those optional selections are as follows:

    1 all incoming and outgoing traffic

    2 attempted access to blocked site

    3 connections to the web-based interface of this router

    4 router operation (start up, get time, etc.)

    5 known dos attacks and port scans

    enabling syslog

    you can choose to write the logs to a pc running a syslog program. to activate this feature, check the box under syslog and enter the ip address of the server where the log file will be written.