Kernun Clear Web
Kernun UTM is a new type of a UTM secure device that contains multiple features, such as firewall, antivirus, antispam, antispyware, content filtering, intrusion detection (IDS or IPS), routing, QoS or VPN, in a single package. It has been designed to protect private data networks and DMZ segments (demilitarized zones, including servers with public services, for example WWW, FTP, mail servers, secure remote VPN connection, etc.). It provides antivirus and antispam protection, as well as an ability to block unsuitable protocols (Skype, ICQ, etc.) and unsuitable Web pages.
Logs can be sent to Logmanager from all parts of Kernun.
-
Log in to Kernun Clear Web web administration, you will need a username with admin privilege
https://<Kernun_IP_address>/
Login to the web administration
-
Click
System management ‣ Maintenance and updates
Maintenance and updates configuration
-
Turn on Enable SSH access
Enable SSH access
-
Insert the public part of your SSH key in Users ssh keys
Insert your public SSH key
-
Save the new configuration by clicking the top right button Activate the configuration
Activate the configuration
-
Now you need to log in to Kernun via SSH
ssh root@<Kernun_IP_address> -
You must edit the syslog configuration file:
nano /etc/syslog.conf -
Add a new line to the end of the file:
# log all messages to Logmanager *.* @<Logmanager_IP_address>Logmanager_IP_address is the IP address of your Logmanager server. -
If you only want to log a specific part of Kernun, use:
# log only authorization messages to Logmanager auth.* @<Logmanager_IP_address> -
Now save the config file by pressing:
ctrl-x -
Restart the syslog daemon:
/etc/rc.d/syslogd restart
Now your Kernun device will be sending logs to the Logmanager.