Monitoring the logs which storing in Dimension server
Hey All,
We have a dimension server where we can able to view the logs in the readable format now we wanted to read these log files and format them according to our needs,
so we tried to connect with the external monitor device(Logic monitor) but we got an error as the screenshot attached.
Does anyone know how to access the logs files and read them / format them?.
Any suggestions would be helpful to resolve this issue and complete the task.
-removed broken link - James C
Thanks in advance
0
Sign In to comment.
Comments
I get this error when accessing the link posted:
Your client does not have permission to get URL
Sorry for the broken link!
Is there any way to access log files that are storing in dimension as a file format and a way to access the **PostgreSQL **database?
Based on the above information I need to access and analyze the logs which are storing in dimension or watch guard server.
Note: I have a webpage where I can only see the readable logs.
You can send logs to a Syslog server and access them there.
I did this in the past and created my own reports for data of interest.
If you use Dimension and set up an external PostgreSQL database, then you could possibly access data from that external DB.
WSM Log Server data is also saved in a PostgreSQL database.
Use Scripts, Utilities, and Third-Party Software with the Log Server
https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/logging/ls_cli_script-utilities-3rdpartysoftware_wsm.html
About NetFlow
https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/basicadmin/netflow_about.html
There are other technology partners which have solutions which look at WG firewall logs.
https://www.watchguard.com/wgrd-partners/technology-partners?combine=&field_watchguard_product_tid=1306
@Chandanesh
There's no way to access the internal database. If you'd like to access it directly, you'll need to set up an external database and point Dimension at that.
You can read more about the requirements for that here:
https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/dimension/database_configuration_d.html
I would suggest using Bruce's method instead. Using syslog pipes the logs directly into whatever you want to use to look at them rather than having to try and build queries to pull what you want from the (what will end up being a rather large) database.
-James Carson
WatchGuard Customer Support