Hi All
I have a router that can send all its logs to a syslog server, so i have installed a syslog server on my internal network, thinking that I could have the router send all the logs to that server.
So here is what I have done:
01) Network Protection → Firewall → Rules → SYSLOG from Internet Router to [Internal SYSLOG Server]
02) Network Protection → NAT → NAT → SYSLOG from Internet Router to External (Address)
But the Firewall drops all the packages with the following entry in the firewall log:
2014:02:12-14:26:03 [MASKED] ulogd[4484]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" initf="eth2" srcmac="b0:b2[:D]c:98:a:3" dstmac="0:c:29:98:3d:5b" srcip="[MASKED]" dstip="[MASKED]" proto="17" length="230" tos="0x00" prec="0x00" ttl="64" srcport="32768" dstport="514"
I have even put the firewall rule as the 1st rule, but it still drops the packets.
Can any one tell me what I am missing here?
This thread was automatically locked due to age.
