The help pages in the Juniper NetScreen-5GT router have the following information:
Syslog Report Settings
Syslog is a facility that enables the logging of system events to a single file for later review. A NetScreen device can generate syslog messages for system events at predefined severity levels and optionally for traffic that policies permit across a firewall. It sends these messages via UDP (port 514) to up to four designated syslog hosts running on UNIX/Linux systems. The severity level of an event determines whether the event is communicated in a syslog message (see Log Settings).
Note: When you enable Syslog on a NetScreen device running in Transparent mode, you must set up a static route on the Route Table.
ScreenOS provides an Event Log for monitoring system events on the NetScreen device. You can use the Event Log to view system events and gather information about hardware or software problems. The Event Log categorizes system events by severity level.
The event log displays the following information for each event:
Date/Time: Indicates the date and time of the system event.
Level: Indicates the severity level of the system event.
Description: Describes the system events or changes and, if applicable, the source of the events.
The Event log Severity Levels Are as Follows:
EMERGENCY: Identifies critical attacks such as SYN attacks, Tear Drop attacks, and Ping of Death attacks. For more information on these types of attacks, see Screen Options.
ALERT: Identifies problems such as multiple user authentication failures and other attacks not included in the emergency category. For more information on various types of attacks, see Screen Options.
CRITICAL: Identifies events such as URL blocks, traffic alarms, high availability (HA) status changes, and global communications.
ERROR: Generates messages for admin name and password changes.
WARNING: Generates messages for admin logins and logouts, failures to log in and log out, and user authentication failures, successes, and timeouts.
NOTIFICATION: Generates messages for link status changes, load balancing server status changes, and traffic logs.
INFORMATION: Generates any kind of message not specified in other categories.
DEBUGGING: Generates all debugging messages. (See "Debug" commands in the NetScreen CLI Reference Guide.)
Created: Monday, April 6, 2009