Support Center > Search Results > SecureKnowledge Details
Security Gateway sends logs to both the real IP address and NATed IP address of the Security Management / Log Server Technical Level
Symptoms
  • Output of the "cpstat fw -f log_connection" command on the Security Gateway (does not work on Gaia Embedded appliances) shows that the Security Gateway sends the logs to both the real IP address and NATed IP address of the Security Management / Log Server.

  • If the Security Gateway fails to connect to one of these IP addresses, it starts to save the logs locally.

Cause

The Security Gateway sends logs to the Security Management NATed IP because the Management Server's real IP address is found on the "Management" interface of the NAT-enforcing Gateway, and only hosts with IP addresses from the network behind the "Management" interface are allowed to connect to the Management Server's real IP address.

Because the Security Gateway's IP address is not in the range of the "Management" interface, the Gateway connects to the Management Server using its NATed IP address.


Solution
Note: To view this solution you need to Sign In .