FAQ-如何查看USG5500V300R001 UTM日志信息

发布时间:  2013-12-29 浏览次数:  219 下载次数:  0
问题描述
Q:
如何查看USG5500V300R001 UTM日志信息?
告警信息
处理过程
A:
1、从V300R001开始,中低端防火墙都有审计员这个角色。首先需要创建一个审计员,它是独立于0-15级之外的一个用户角色。
 aaa
       local-user auditor  password cipher %$%$s=-/Cg|no~.MqDEn5y<+`qh_%$%$
       local-user auditor  service-type web  telnet
       local-user auditor  level audit
 2、通过WEB方式登录防火墙设备,该审计员具备查看UTM日志的权限。审计员登录后页面如下:
     
    
3、通过telnet或超级终端登录后只能在用户视图下进行操作,大量管理员的命令无法操作,包括进入系统视图、查看完整配置。能够进行的命令如下:
<USG5500>?
User view commands:
  backup-configuration  Indicate backup configuration file for system startup
  cd                    Change current directory
  clock                 Specify the system clock
  compare               Compare function
  copy                  Copy from one file to another
  current-user          Indicate current user
  debugging             Indicate debugging
  delete                Delete a file
  dir                   List files on a file system
  display               Display current system information
  fixdisk               Recover lost chains in storage device
  format                Format the device
  free                  Clear user terminal interface
  ftp                   Open FTP connection
  language-mode         Specify the language environment
  lock                  Lock current user terminal interface
  mkdir                 Create a new directory
  more                  Display the contents of a file
  move                  Move the file
  pathmtu               Configure Path-MTU test
  ping                  Send echo messages
  pwd                   Display current working directory
  quench                Turn off the alarm light
  quit                  Exit from current command view
  reboot                Reboot system
  refresh               Do soft reset
  rename                Rename a file or directory
  reset                 Reset operation
  rmdir                 Remove an existing directory
  save                  Save current configuration
  schedule              schedule system task
  send                  Send information to other user terminal interface
  snmp-agent            Specify SNMP(Simple Network Management Protocol)
                        configuration information
  start-script          Run a script string on an UI
  startup               Indicate system startup parameters
  super                 Privilege current user a specified priority level
  system-view           Enter the system view
  telnet                Establish one TELNET connection
  terminal              Set the terminal line characteristics
  tftp                  Open TFTP connection
  tracert               Trace route to host
  undelete              Recover a deleted file
  undo                  Cancel current setting
  unzip                 Decompress a file
  upgrade               Indicate upgrade file
  xmodem                Establish an xmodem connection
  zip                   Compress a file 

   
    
根因
建议与总结

END