Cisco Cisco Web Security Appliance S160 User Guide

SHD Logs

(System Health 
Daemon)

Records a history of the health of system services 
and a history of unexpected daemon restarts.

Yes

Yes

SNMP Logs

Records debug messages related to the SNMP 
network management engine.

Yes

Yes

SNMP Module 
Logs

Records Web Proxy messages related to interacting 
with the SNMP monitoring system.

No

No

Sophos Integration 
Framework Logs

Records messages related to communication 
between the Web Proxy and the Sophos scanning 
engine.

No

No

Sophos Logs

Records the status of anti-malware scanning 
activity from the Sophos scanning engine.

Yes

Yes

Status Logs

Records information related to the system, such as 
feature key downloads.

Yes

Yes

System Logs

Records DNS, error, and commit activity.

Yes

Yes

Traffic Monitor 
Error Logs

Records L4TM interface and capture errors.

Yes

Yes

Traffic Monitor 
Logs

Records sites added to the L4TM block and allow 
lists.

No

Yes

UDS Logs

(User Discovery 
Service)

Records data about how the Web Proxy discovers 
the user name without doing actual authentication. 
It includes information about interacting with the 
Cisco adaptive security appliance for the Secure 
Mobility as well as integrating with the Novell 
eDirectory server for transparent user 
identification.

Yes

Yes

Updater Logs

Records a history of WBRS and other updates.

Yes

Yes

W3C Logs

Records Web Proxy client history in a W3C 
compliant format.

For more information, see 

.

Yes

No

WBNP Logs

(SensorBase 
Network 
Participation)

Records a history of Cisco SensorBase Network 
participation uploads to the SensorBase network.

No

Yes

WBRS Framework 
Logs

(Web Reputation 
Score)

Records messages related to communication 
between the Web Proxy and the Web Reputation 
Filters.

No

No

WCCP Module 
Logs

Records Web Proxy messages related to 
implementing WCCP.

No

No