Cisco Cisco Content Security Management Appliance M1070 Mode D'Emploi

 describes the statistics recorded in FTP server logs.

In this example, the FTP server log records a connection (ID:1). The IP address of the incoming 
connection is shown, as well as the activity (uploading and downloading files) and the logout.

Wed Sep  8 18:03:06 2004 Info: Begin Logfile

Wed Sep  8 18:03:06 2004 Info: Version: 4.0.0-206 SN: 00065BF3BA6D-9WFWC21

Wed Sep  8 18:03:06 2004 Info: Time offset from UTC: 0 seconds

Wed Sep  8 18:03:06 2004 Info: System is coming up

Fri Sep 10 08:07:32 2004 Info: Time offset from UTC: -25200 seconds

Fri Sep 10 08:07:32 2004 Info: ID:1 Connection from 10.1.3.14 on 172.19.0.86

Fri Sep 10 08:07:38 2004 Info: ID:1 User admin login SUCCESS

Fri Sep 10 08:08:46 2004 Info: ID:1 Upload wording.txt 20 bytes

Fri Sep 10 08:08:57 2004 Info: ID:1 Download words.txt 1191 bytes

Fri Sep 10 08:09:06 2004 Info: ID:1 User admin logout

 describes the statistics recorded in HTTP logs

In this example, the HTTP log shows the admin user’s interaction with the GUI (for example, running 
the System Setup Wizard).

Wed Sep  8 18:17:23 2004 Info: http service on 192.168.0.1:80 redirecting to https port 

443

Wed Sep  8 18:17:23 2004 Info: http service listening on 192.168.0.1:80

Wed Sep  8 18:17:23 2004 Info: https service listening on 192.168.0.1:443

Wed Sep  8 11:17:24 2004 Info: Time offset from UTC: -25200 seconds

Time that the bytes were transmitted.

Connection ID. A separate ID for each FTP connection.

The message section of the log entry can be logfile status information, or FTP 
connection information (login, upload, download, logout, and so forth).

Time that the bytes were transmitted.

Session ID.

IP address of machine connecting.

User name of user connecting.

Information regarding the actions performed. May include GET or POST commands 
or system status, and so forth.