Is there a means by which the controll firewall logs can be forwarded to an external server?
I have already setup the firewall logs under Security in the logging configuration at debugging level and sending to an external syslog received. I'm seeing the messages, but they are not very useful. Most if not all the messages are deny messages (even in debug mode) and I see a number of denied hits for a destination IP of the wireless client gateway versus the external IP they are attempting to hit.
Bottom-line I'm trying to debug an issue where certain resources are not accessible from a captive role governed by the stateful firewall policy. I would like to be able to see in real-time a device being denied access as to identify resources that are incorrectly being denied.