Technical data
Auditing Configuration Files
117347-A Rev. A 10-5
Figure 10-2. Default Audit Trail Configuration File
3.
Copy the four default lines in the file and insert them at the end of the file.
4. Delete the pound sign (#) from the beginning of all four lines.
5. In the first line, ROUTER=, overwrite the default value with the IP
address of the router you want to audit.
6. In the FILE= line, overwrite the default value with the path name and file
name for the audit trail log file for the router.
On UNIX workstations, the path for your audit trail log file should point to a
directory in your UNIX environment where you have write permission; on
PCs, the path is c:\wf. The file name should be the router’s name (not its IP
address) followed by the .adt extension. For example:
FILE=/usr1/jb/southcape.adt
7. In the EMAIL= line, overwrite the default value with the e-mail
addresses of users you want to notify of configuration changes.
Use a comma to separate each e-mail address, for example:
EMAIL=pgrant,llantz,odiaz
If you do not want to use mail notification, delete the default e-mail addresses.
8. In the AUDIT= line, accept the default value, ON, to enable the feature.
To disable the audit trail log, type
OFF.
9. Repeat steps 2 through 8 for each router that you want to audit.
10. Save your changes and exit the file.
Note: The mail notification feature is not available on PCs.
#ROUTER=192.32.156.66
#AUDIT=ON
#FILE=/usr/wf/routerA.adt
#EMAIL=jdoe@wellfleet.com,jsmith@wellfleet.com
MAN0003A