Cisco Cisco Web Security Appliance S670 User Guide
21-6
AsyncOS 9.1 for Cisco Web Security Appliances User Guide
Chapter 21 Monitor System Activity Through Logs
Log File Types
Request Debug Logs Records very detailed debug information on a
specific HTTP transaction from all Web Proxy
module log types. You might want to create this log
subscription to troubleshoot a proxy issue with a
particular transaction without creating all other
proxy log subscriptions.
module log types. You might want to create this log
subscription to troubleshoot a proxy issue with a
particular transaction without creating all other
proxy log subscriptions.
Note: You can create this log subscription in the
CLI only.
CLI only.
No
No
Auth Logs
Records messages related to the Access Control
feature.
feature.
Yes
Yes
SHD Logs
(System Health
Daemon)
Daemon)
Records a history of the health of system services
and a history of unexpected daemon restarts.
and a history of unexpected daemon restarts.
Yes
Yes
SNMP Logs
Records debug messages related to the SNMP
network management engine.
network management engine.
Yes
Yes
SNMP Module Logs Records Web Proxy messages related to interacting
with the SNMP monitoring system.
No
No
Sophos Integration
Framework Logs
Framework Logs
Records messages related to communication between
the Web Proxy and the Sophos scanning engine.
the Web Proxy and the Sophos scanning engine.
No
No
Sophos Logs
Records the status of anti-malware scanning activity
from the Sophos scanning engine.
from the Sophos scanning engine.
Yes
Yes
Status Logs
Records information related to the system, such as
feature key downloads.
feature key downloads.
Yes
Yes
System Logs
Records DNS, error, and commit activity.
Yes
Yes
Traffic Monitor
Error Logs
Error Logs
Records L4TM interface and capture errors.
Yes
Yes
Traffic Monitor
Logs
Logs
Records sites added to the L4TM block and allow
lists.
lists.
No
Yes
UDS Logs
(User Discovery
Service)
Service)
Records data about how the Web Proxy discovers
the user name without doing actual authentication.
It includes information about interacting with the
Cisco adaptive security appliance for the Secure
Mobility as well as integrating with the Novell
eDirectory server for transparent user identification.
the user name without doing actual authentication.
It includes information about interacting with the
Cisco adaptive security appliance for the Secure
Mobility as well as integrating with the Novell
eDirectory server for transparent user identification.
Yes
Yes
Updater Logs
Records a history of WBRS and other updates.
Yes
Yes
W3C Logs
Records Web Proxy client history in a W3C
compliant format.
compliant format.
For more information, see
.
Yes
No
WBNP Logs
(SensorBase
Network
Participation)
Network
Participation)
Records a history of Cisco SensorBase Network
participation uploads to the SensorBase network.
participation uploads to the SensorBase network.
No
Yes
Log File Type
Description
Supports
Syslog Push?
Syslog Push?
Enabled by
Default?
Default?