Update logging-options.mdx (#20605)

* Update logging-options.mdx

modifying forensic copies instructions

* Minor fixes

* Edit other logs instructions to match

---------

Co-authored-by: Max Phillips <[email protected]>

Author: warnessa

src/content/docs/cloudflare-one/insights/logs/logpush.mdx

@@ -17,15 +17,15 @@ With Cloudflare's [Logpush](/logs/about/) service, you can configure the automat
 Zero Trust does not support configuring [Cloudflare R2](/logs/get-started/enable-destinations/r2/) as a Logpush destination in the dashboard. To use R2 as a destination for Zero Trust logs, configure your Logpush jobs [with the API](/logs/get-started/enable-destinations/r2/#manage-via-api).
 :::
 
-To enable Logpush for Zero Trust logs:
+To configure Logpush for Zero Trust logs:
 
 1. In [Zero Trust](https://one.dash.cloudflare.com/), go to **Logs** > **Logpush**.
-2. Select **Add Logpush job**.
-3. Select **Create a Logpush job**.
-4. In **Select a destination**, select the service you want to export your logs to.
+2. If this is your first Logpush job, select **Add a Logpush job**. Otherwise, select **Go to logpush configurations**.
+3. In Logpush, select **Create a Logpush job**.
+4. Choose a [Logpush destination](/logs/get-started/enable-destinations/).
 5. Follow the service-specific instructions to configure and validate your destination.
-6. Choose the [**Zero Trust datasets**](#zero-trust-datasets) you would like to export.
-7. Enter a **Job name**, any [filters](/logs/reference/filters/) you would like to add, and the data fields you want to include in the log.
+6. Choose the [Zero Trust datasets](#zero-trust-datasets) to export.
+7. Enter a **Job name**, any [filters](/logs/reference/filters/) you would like to add, and the data fields you want to include in the logs.
 8. (Optional) In **Advanced settings**, choose the timestamp format you prefer and whether you want to enable log sampling.
 9. Select **Submit**.
 

src/content/docs/cloudflare-one/policies/data-loss-prevention/dlp-policies/logging-options.mdx

@@ -66,13 +66,16 @@ Gateway allows you to send copies of entire HTTP requests matched in DLP policie
 
 To set up the DLP Forensic Copy Logpush job:
 
-1. In [Zero Trust](https://one.dash.cloudflare.com/), go to **Logs** > **Logpush**. Select **Add a Logpush job**.
-2. Set up a [Logpush destination](/logs/get-started/enable-destinations/) with the DLP Forensic Copy Logpush job.
-3. Return to Zero Trust and go to **Gateway** > **Firewall policies** > **HTTP**.
-4. Edit an existing Allow or Block DLP policy, or [create a new policy](/cloudflare-one/policies/data-loss-prevention/dlp-policies/#2-create-a-dlp-policy).
-5. In the policy builder, scroll down to **Configure policy settings** and turn on **Send copy to storage**.
-6. Select a storage destination. Gateway will list any configured Logpush jobs or integrations that can receive HTTP requests.
-7. Select **Save**.
+1. In [Zero Trust](https://one.dash.cloudflare.com/), go to **Logs** > **Logpush**.
+2. If this is your first Logpush job, select **Add a Logpush job**. Otherwise, select **Go to logpush configurations**.
+3. In Logpush, select **Create a Logpush job**.
+4. Choose a [Logpush destination](/logs/get-started/enable-destinations/).
+5. In **Configure logpush job**, choose the _DLP forensic copies_ dataset. Select **Create Logpush job**.
+6. Return to Zero Trust and go to **Gateway** > **Firewall policies** > **HTTP**.
+7. Edit an existing Allow or Block DLP policy, or [create a new policy](/cloudflare-one/policies/data-loss-prevention/dlp-policies/#2-create-a-dlp-policy).
+8. In the policy builder, scroll down to **Configure policy settings** and turn on **Send copy to storage**.
+9. Select a storage destination. Gateway will list any configured Logpush jobs or integrations that can receive HTTP requests.
+10. Select **Save policy**.
 
 DLP will now send a copy of HTTP requests that match this policy to your Logpush destination.