The Log Analysis feature automatically collects real-time Internet Traffic Logs, letting you search and analyze the collected data. Results appear on intuitive dashboards.
Background
If you are uncertain about the traffic patterns for a planned Access Control policy, you can first set the policy to Monitor mode. In this mode, traffic between the Source Address and Destination Address is still permitted. You can use the Log Analysis feature to monitor the traffic behavior and then adjust the policy to Allow or Deny.
Supported editions
This feature is available in the Premium Edition, Enterprise Edition, Ultimate Edition, and Pay-as-you-go Edition of Cloud Firewall. It is not supported in the Free Edition or the Hangzhou Finance Cloud Basic Edition.
Important
If you have a Pay-as-you-go Edition of Cloud Firewall, the system does not automatically release the associated Simple Log Service (SLS) when you disable or release the CFW instance. You must manually disable or release it from the Log Service console.
Enable the Log Analysis feature
Method 1
Go to the Cloud Firewall purchase page.
Enable the Log Analysis feature, set the Log Storage Capacity, and then click Buy Now.
For more information about the configuration, see Subscription 2.0.
Log on to the Cloud Firewall console.
In the navigation pane on the left, choose
Click Enable Now.
Method 2
Log in to the Cloud Firewall console.
In the left-side navigation pane, choose .
On the Log Analysis page, click Upgrade Now or Enable Now.
Follow the on-screen instructions.
On the Log Analysis page in the Cloud Firewall console, click the switch for Log Delivery in the upper-right corner and enable the switches for the logs you want to analyze.
You can analyze the following log types: Internet Traffic Log, VPC Traffic Log, DNS Traffic Log, IPv6 Traffic Log, and NAT Traffic Log.
Log Analysis collects all Traffic Logs from Cloud Firewall in real time.