> For the complete documentation index, see [llms.txt](https://docs.blusapphire.io/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.blusapphire.io/log-forwarding/03_log-forwarding-guide/log-forward/juniper/netscreen-firewall.md). # NetScreen Firewall ## NetScreen Firewall Enable Syslog Messages and Disable WebTrends Messages using the NetScreen Administration Tools Console  1. Log in to the NetScreen GUI. 2. Click Configuration> Report Settings> Syslog in the left pane of the NetScreen GUI. 3. Select the Enable Syslog Messages check box. 4. Select the Trust Interface as Source IP for VPN and Include Traffic Log check box. 5. Type the IP address of the “Log Collector” and syslog port (514) in the Syslog Host Name / Port text box. 6. All other fields will have default values. 7. Click Apply to save the changes. 8. Click Configuration> Report Settings> WebTrends in the left pane of the NetScreen GUI 9. Clear the Enable WebTrends Messages check box. 10. Click Apply to save the changes. To configure Syslog, perform the following steps: 1. Open the WebUI. 2. From the ScreenOS console menu, click Configuration, select Report Settings, and then click Syslog. !\[A picture containing graphical user interface, application Description automatically generated]\() 1. From the Syslog page, click to select Enable Syslog Messages. | Note: | From the 'Source interface' drop-down menu, select the interface from which syslog packets are sent. | | ----- | ---------------------------------------------------------------------------------------------------- | !\[Graphical user interface, text, application Description automatically generated]\() 1. Enter the necessary information for each syslog server you are adding. Syslog messages can be sent to up to 4 designated syslog servers.  * Enable: Select this option to enable the syslog server. * IP/ Hostname: The IP address of the “Log Collector”.. * Port: In the Port field, enter the port the server uses for syslog messages. Please check Appendix A for default port list. * Security Facility: The security facility, which classifies and sends security specific messages to the syslog host. * Facility: The regular facility, which classifies and sends all other messages for events unrelated to security. * Event Log: Select this option to send event log entries to the syslog host. * Traffic Log: Select this option to send traffic log entries to the syslog host. For this example, 192.168.1.2 has been used as the Syslog Host Name. It is recommended to leave the Syslog port as the default value (514): \ \ !\[Graphical user interface, table Description automatically generated]\(; 1. Click APPLY to save the syslog configuration.  !\[Table Description automatically generated]\() | Caution: | Uncheck the TCP option. This will make the firewall to send syslogs in the configured UDP port. | | -------- | ----------------------------------------------------------------------------------------------- | ### Configure/Enable Syslog Messages for Netscreen Firewall device using CLI Console: Execute the following commands to configure syslog via CLI:  set syslog config 192.168.1.2 \ set syslog config 192.168.1.2 facilities local0 local0 \ set syslog config 192.168.1.2 log traffic \ set syslog src-interface <\> \ set syslog enable NOTE: The difference between “security facility” and “facility” is that “security facility” is specific for logging of security related events. Facility logs all other events. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://docs.blusapphire.io/log-forwarding/03_log-forwarding-guide/log-forward/juniper/netscreen-firewall.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.