Cisco Cisco Email Security Appliance C390 사용자 가이드

IronPort AsyncOS creates a directory for each log subscription based on the log 
subscription name. The actual name of the log file in the directory is composed of 
the log filename specified by you, the timestamp when the log file was started, and 
a single-character status code. The filename of logs are made using the following 
formula: 

/LogSubscriptionName/LogFilename.@timestamp.statuscode 

 

Status codes may be 

.c

 (signifying current) or 

.s

 (signifying saved). You should 

only transfer log files with the saved status. 

Log subscriptions create and transfer (rollover) log files based on the first 
user-specified limit reached: maximum file size or maximum time. Log 
subscriptions based on the FTP poll transfer mechanism will create files and store 
them in the FTP directory on the Cisco IronPort appliance until they are retrieved 
or until the system needs more space for log files. See 

 for more information. 

Your IronPort appliance is pre-configured with the following log subscriptions 
enabled by default (other logs may be configured depending on which license 
keys you have applied):

1

antispam

Anti-Spam logs

FTP Poll

2

antivirus

Anti-Virus Logs

FTP Poll

3

asarchive

Anti-Spam Archive

FTP Poll

4

authentication

Authentication Logs

FTP Poll

5

avarchive

Anti-Virus Archive

FTP Poll

6

bounces

Bounce Logs

FTP Poll