Log All Activities

  • 29 January 2024
  • 1 reply
  • 73 views

Hi

 

What is your best practice?  Do you block ALL and allow as require? Or Allow ALL and block as require?

How do I log all web access activity whether is blocked or allowed?  Eg, do a google search, go to new site, upload file to storage etc.  Do I need to write policy to do it?

 

Thank

Munster


1 reply

Hi Munster, 

By default, we do not log allowed traffic. If traffic is blocked, it is logged, and you can view that traffic under Skope-IT  alerts. If you wish to log allowed web traffic, you do not need to create a new policy; simply change the action of the existing policy to 'alert' to log all traffic matching that specific policy

 

Reply