You can configure email alerts for System,
Config, HIP Match, Correlation, Threat, WildFire Submission, and
Traffic logs.
Create
an Email server profile.
You can use separate profiles to send
email notifications for each log type to a different server. To
increase availability, define multiple servers (up to four) in a
single profile.
Select DeviceServer ProfilesEmail.
Click Add and then enter a Name for
the profile.
If the firewall has more than one virtual system (vsys),
select the Location (vsys or Shared)
where this profile is available.
For each Simple Mail Transport Protocol (SMTP) server
(email server), click Add and define the
following information:
Name—Name to identify the
SMTP server (1-31 characters). This field is just a label and doesn’t
have to be the hostname of an existing email server.
Email Display Name—The name to show
in the From field of the email.
From—The email address from which
the firewall sends emails.
To—The email address to which the
firewall sends emails.
Additional Recipient—If you want to
send emails to a second account, enter the address here. You can
add only one additional recipient. For multiple recipients, add
the email address of a distribution list.
Email Gateway—The IP address or hostname
of the SMTP gateway to use for sending emails.
(Optional) Select the Custom Log
Format tab and customize the format of the email messages.
For details on how to create custom formats for the various log
types, refer to the Common Event Format Configuration
Guide.
Click OK to save the Email
server profile.
Configure email alerts for Traffic, Threat, and WildFire
Submission logs.