Cisco Cisco Web Security Appliance S170 Guía Del Usuario
20-8
AsyncOS 8.1 for Cisco Web Security User Guide
Chapter 20 Monitor System Activity Through Logs
Log File Types
Log File Types
The log file type indicates what information is recorded in the generated log, such as web traffic or
system data. The Web Security appliance has log subscriptions for most log file types by default, with
the exception of Web Proxy troubleshooting logs.
system data. The Web Security appliance has log subscriptions for most log file types by default, with
the exception of Web Proxy troubleshooting logs.
The following table describes the Web Security appliance log file types.
Log File Type
Description
Supports
Syslog Push?
Syslog Push?
Enabled by
Default?
Default?
Access Control
Engine Logs
Engine Logs
Records messages related to the Web Proxy ACL
(access control list) evaluation engine.
(access control list) evaluation engine.
No
No
AMP Engine Logs
Records information about file reputation scanning
and file analysis (Advanced Malware Protection.)
and file analysis (Advanced Malware Protection.)
See also
Yes Yes
Access Logs
Records Web Proxy client history.
Yes
Yes
Authentication
Framework Logs
Framework Logs
Records authentication history and messages.
No
Yes
AVC Engine
Framework Logs
Framework Logs
Records messages related to communication
between the Web Proxy and the AVC engine.
between the Web Proxy and the AVC engine.
No
No
AVC Engine Logs
Records debug messages from the AVC engine.
Yes
Yes
CLI Audit Logs
Records a historical audit of command line
interface activity.
interface activity.
Yes
Yes
Configuration Logs Records messages related to the Web Proxy
configuration management system.
No
No
Connection
Management Logs
Management Logs
Records messages related to the Web Proxy
connection management system.
connection management system.
No
No
Data Security Logs
Records client history for upload requests that are
evaluated by the Cisco Data Security Filters.
evaluated by the Cisco Data Security Filters.
Yes
Yes
Data Security
Module Logs
Module Logs
Records messages related to the Cisco Data
Security Filters.
Security Filters.
No
No
DCA Engine
Framework Logs
Framework Logs
(Dynamic Content
Analysis)
Analysis)
Records messages related to communication
between the Web Proxy and the Cisco Web Usage
Controls Dynamic Content Analysis engine.
between the Web Proxy and the Cisco Web Usage
Controls Dynamic Content Analysis engine.
No
No
DCA Engine Logs
(Dynamic Content
Analysis)
Analysis)
Records messages related to the Cisco Web Usage
Controls Dynamic Content Analysis engine.
Controls Dynamic Content Analysis engine.
Yes
Yes
Default Proxy Logs Records errors related to the Web Proxy.
This is the most basic of all Web Proxy related logs.
To troubleshoot more specific aspects related to the
Web Proxy, create a log subscription for the
applicable Web Proxy module.
To troubleshoot more specific aspects related to the
Web Proxy, create a log subscription for the
applicable Web Proxy module.
Yes
Yes