A log type defines the range of activity that is recorded in log files of that type. The Web Security
appliance provides numerous log types, each of which logs activity related to a specific area.

Two of the main log types that administrators use for normal appliance monitoring are the Access logs
and Traffic Monitor logs. Access logs record activity related to client access through the web proxy,
including filtering and scanning activity. Traffic Monitor logs record activity related to Layer-4 traffic
monitoring.

Access logs are further divided into standard Access logs and W3C compliant access logs. Both can
record the same range of activity but do so in different formats. W3C are also more customizable with
regard to their content and layout than standard Access logs.

Steps

Task

Links to Related Topics and Procedures

Plan logging tasks:

•

Review the best practices for logging

•

Review logging concepts

Best Practices for Logging, page 20-2

Planning For Logging, page 20-2

Create or change logging subscriptions

Adding and Editing Log Subscriptions, page 20-5