Comodo Dome Firewall

• Introduction To Comodo Dome Firewall - Virtual Appliance
  • Install Dome Firewall And Login To The Administrative Console
• The Main Interface
• The Dashboard
• View And Modify System Status And General Configuration
  • Manage Admin Accounts
    • Add And Manage Administrators
    • Manage Administrative Roles
  • License Activation
  • SNMP Settings
  • Central Management
  • Configure SSH Access
  • High Availability
  • View And Update Firmware Version
  • Create And Schedule Backup Of DFW State
    • Manually Create A Backup
    • Schedule Backup Operations
    • Encrypt Backup Archives
    • Export A Backup
    • Import A Backup Archive From A Local Computer
    • Roll Back The Virtual Appliance To A Previous Time Point
    • Reset The Virtual Appliance To Factory Defaults
  • Shutdown Or Restart The Dome Firewall Virtual Appliance
• View DFW Virtual Appliance Status
  • System Status
  • Network Status
  • System Usage Summaries
  • Network Traffic
  • Network Connections
  • SSLVPN Connections
• Network Configuration
  • Configure Interface Devices, Uplinks And VLANs
    • Configure Interface Devices
    • Add And Manage Gateway Uplink Devices
    • Create VLANs
  • Routes
    • Add And Manage Static Routes
    • Add And Manage Policy Routing Rules
• Configure DFW Virtual Appliance Services And Protection Settings
  • DHCP Server
  • Advanced Threat Protection
    • Manage The ATP Profiles
    • Comodo Antivirus
  • Time Server
  • Intrusion Prevention
    • Configure Intrusion Prevention System
    • Manage IPS Rulesets
    • Manage Application Identification Rulesets
  • Configure Wireless Hotspot
    • Configure Captive Portal Service
    • Customize The Login Page
    • Add And Manage Permanent Users
  • Internet Content Adaptation Protocol
  • Quality Of Service
• Manage Firewall Configuration
  • Firewall Objects
    • Manage Firewall Address Objects
    • Manage Firewall Object Groups
    • Manage Firewall Schedules
    • Active Directory Integration
  • Destination Network Address Translation
  • Source Network Address Translation
  • Configure System Access
  • Configure Firewall Policy Rules
    • Manage Firewall Policy Rules
    • Manage VPN Firewall Rules
• Configure Proxy Services
  • HTTP/HTTPS Proxy Server
    • Configure URL And Content Filtering
    • HTTPS Proxy
• Configure Virtual Private Network Settings
  • SSL VPN Server
    • Configure General SSL VPN Server Settings
    • Manage SSL VPN Client Accounts
    • Configure Advanced SSL VPN Server Settings
    • Configure Clients To Connect To Dome Firewall
  • IPsec Configuration
  • Configure L2TP Server
  • Configure IPSec/L2TP Users
• View Logs
  • Realtime Logs
  • Configure Log Settings
  • Generate Reports
• Appendix - Minimum Requirements For Software Installations

Configure Log Settings

• Click 'Logs' on the left then choose 'Settings'

• The 'Log Settings' interface lets you customize the log viewers of various modules.

• You can also specify a remote syslog server to store the logs.

To configure the log viewer module

• Click 'Logs' on the left then choose 'Settings' from the options
  

The interface contains three areas: 

• Log Viewing Options
  

• Remote Logging
  

• Firewall Logging

Log Viewing Options

The 'Log Viewing Options' area lets you customize the log viewer screens of different DFW modules.

• Number of lines to display - Specify the number of log entries to be displayed in a single page in the log viewer

• Sort in reverse chronological order - The log entries are normally displayed in chronological order, that is the latest entries added to the bottom of the page On selecting this option, the entries will be sorted in reverse chronological order, that is the latest entries will be added to the top of each page.
  

Remote Logging

If the logs are to be posted on to a remote log server, specify the remote server and the protocol to be used for the data transfer.

• Enabled - Select the checkbox to enable remote logging

• Syslog server - Specify the host name or the IP address of the remote logging server to which the logs are to be passed. Ensure that the server supports the latest IETF syslog protocol standards. If a remote syslog server is setup in the network by installing 'Dome Firewall Log Collector', specify the IP address or the hostname of the endpoint at which the log collector is installed.

• Protocol - Choose the data transfer protocol to be used for transferring the logs from the drop-down. 

Firewall Logging

The 'Firewall Logging' area lets you specify event types that should be included in the firewall logs. These are in addition to the usually logged events.

• Select the event types from the options in this area:

• Log packets with BAD constellation of TCP flags - Log packets with all flags set.

• Log NEW connections without SYN flag – Log all new connections without the synchronization flag.

• Log accepted outgoing connections – Log outgoing connections that pass through the firewall from internal network zones.

• Log refused packets – Log packets from external sources that were rejected.

• Click 'Save' for your configuration to take effect.