WatchGuard Firebox System 7.0 User Guide

Chapter 13: Reviewing and Working with Log Files2 On the toolbar, click the Add Service icon(shown at right).You can also select Edit => Add Service. The Servicesdialog box appears.3 Expand Packet Filters.4 Select WatchGuard-Logging. Click Add. Click OK.5 On the Incoming tab, select Enabled and Allowed.6 Under the To list, click Add.7 Click NAT. Enter the external IP address of the mainoffice Firebox in the External IP Address box. Enter theIP address of the log host behind the main officeFirebox in the Internal IP Address box.8 Click OK to close the Add Static NAT dialog box. ClickOK to close the Add Address dialog box. Click OK toclose the WatchGuard-Logging Properties dialog box.9 Save the new configuration to the main office Firebox.On the remote office Firebox:1 Open Policy Manager with the current configurationfile.2 Select Setup => Logging. Click Add.3 Enter the external IP address of the main office Fireboxand log encryption key of the log host on the networkprotected by the main office Firebox.4 Click OK to close the Add IP Address dialog box. ClickOK again to close the Logging Setup dialog box.5 Save the new configuration to the remote officeFirebox.On the log host:You must use the same log encryption key on the remoteoffice Firebox as is configured on the log host protected bythe main office Firebox. To modify the log encryption keyon the log host, see “Setting log encryption keys” onpage 231.You should see the IP address for the remote office Fireboxin the list as soon as it connects. However, it will not232 WatchGuard Firebox System