Cisco Cisco Web Security Appliance S390 Betriebsanweisung
A C C E S S L O G F I L E
C H A P T E R 2 0 : L O G G I N G
437
DIRECT/my.website.com
Code that describes which server was contacted for the
retrieving the request content.
Most common values include:
• NONE. The Web Proxy had the content, so it did not
retrieving the request content.
Most common values include:
• NONE. The Web Proxy had the content, so it did not
contact any other server to retrieve the content.
• DIRECT. The Web Proxy went to the server named in
the request to get the content.
• DEFAULT_PARENT. The Web Proxy went to its primary
parent proxy or an external DLP server to get the
content.
content.
text/plain
Response body MIME type.
ALLOW_WBRS
ACL decision tag.
For more information, see “ACL Decision Tags” on
page 439.
For more information, see “ACL Decision Tags” on
page 439.
AccessOrDecryptionPolicy
Group
Group
Access Policy or Decryption Policy group name. When the
transaction matches the global Access Policy or global
Decryption Policy, this value is “DefaultGroup.”
Any space in the policy group name is replaced with an
underscore ( _ ).
transaction matches the global Access Policy or global
Decryption Policy, this value is “DefaultGroup.”
Any space in the policy group name is replaced with an
underscore ( _ ).
IdentityPolicyGroup
Identity policy group name.
Any space in the policy group name is replaced with an
underscore ( _ ).
Any space in the policy group name is replaced with an
underscore ( _ ).
DataSecurityPolicyGroup
IronPort Data Security Policy group name. When the
transaction matches the global IronPort Data Security
Policy, this value is “DefaultGroup.” This policy group
name only appears when IronPort Data Security Filters is
enabled. “NONE” appears when no Data Security Policy
was applied.
Any space in the policy group name is replaced with an
underscore ( _ ).
transaction matches the global IronPort Data Security
Policy, this value is “DefaultGroup.” This policy group
name only appears when IronPort Data Security Filters is
enabled. “NONE” appears when no Data Security Policy
was applied.
Any space in the policy group name is replaced with an
underscore ( _ ).
ExternalDLPPolicyGroup
External DLP Policy group name. When the transaction
matches the global External DLP Policy, this value is
“DefaultGroup.” “NONE” appears when no External DLP
Policy was applied.
Any space in the policy group name is replaced with an
underscore ( _ ).
matches the global External DLP Policy, this value is
“DefaultGroup.” “NONE” appears when no External DLP
Policy was applied.
Any space in the policy group name is replaced with an
underscore ( _ ).
Table 20-5 Access Log File Entry (Continued)
Field Value
Field Description