Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 1 reply
  • Subscribers 28 subscribers
  • Views 709 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

View XG Firewall configuration changes

RobertBiehl

Good day everyone,

I am trying to figure out how to view all configuration changes to an XG Firewall over a 30 day period. We are trying to troubleshoot some network issues and application problems that stem from a time frame we updated configuration on the XG, but cannot pin point which change correlates to the time the issue presented itself. I know about the Log Viewer -> Admin drop down, but I cannot see past the beginning of the month. Is there a place where this is either archived, or saved in Central, so that I can view older log files?

Any insight would be greatly appreciated.

-Robert B.



This thread was automatically locked due to age.
Parents
  • 0

    Robert - if you have a CFR-A subscription, then the logs can be found in Central for the amount of data that was purchased which would be possibly 30 days and beyond.  If you do not have CFR-A and the Firewall is managed from Central, then you will have 7 days of logs.  Other than that, you would have your on box reporting, which seems to be limited to less than a month based on what you mention in your post.

    If you really need this pinpointed and you don't have the CFR-A subscription, you could go the extra mile and restore a backup on another XG (not the prod one!) of the same model from a month ago or so and check the logs that way.  It's extra work, but its an option if you do not have the reporting available.  You could also do a side by side comparison using this method to see what was changed.

Reply
  • 0

    Robert - if you have a CFR-A subscription, then the logs can be found in Central for the amount of data that was purchased which would be possibly 30 days and beyond.  If you do not have CFR-A and the Firewall is managed from Central, then you will have 7 days of logs.  Other than that, you would have your on box reporting, which seems to be limited to less than a month based on what you mention in your post.

    If you really need this pinpointed and you don't have the CFR-A subscription, you could go the extra mile and restore a backup on another XG (not the prod one!) of the same model from a month ago or so and check the logs that way.  It's extra work, but its an option if you do not have the reporting available.  You could also do a side by side comparison using this method to see what was changed.

Children
No Data