Cisco Cisco Web Security Appliance S390 Guida Utente
20-4
AsyncOS 8.5 for Cisco Web Security Appliances User Guide
Chapter 20 Monitor System Activity Through Logs
Log File Types
Audit Logs
Records AAA (Authentication, Authorization, and
Accounting) events. Records all user interaction
with the application and command-line interfaces,
and captures committed changes.
Accounting) events. Records all user interaction
with the application and command-line interfaces,
and captures committed changes.
Yes
Yes
Access Logs
Records Web Proxy client history.
Yes
Yes
Authentication
Framework Logs
Framework Logs
Records authentication history and messages.
No
Yes
AVC Engine
Framework Logs
Framework Logs
Records messages related to communication
between the Web Proxy and the AVC engine.
between the Web Proxy and the AVC engine.
No
No
AVC Engine Logs
Records debug messages from the AVC engine.
Yes
Yes
CLI Audit Logs
Records a historical audit of command line
interface activity.
interface activity.
Yes
Yes
Configuration Logs Records messages related to the Web Proxy
configuration management system.
No
No
Connection
Management Logs
Management Logs
Records messages related to the Web Proxy
connection management system.
connection management system.
No
No
Data Security Logs
Records client history for upload requests that are
evaluated by the Cisco Data Security Filters.
evaluated by the Cisco Data Security Filters.
Yes
Yes
Data Security
Module Logs
Module Logs
Records messages related to the Cisco Data
Security Filters.
Security Filters.
No
No
DCA Engine
Framework Logs
Framework Logs
(Dynamic Content
Analysis)
Analysis)
Records messages related to communication
between the Web Proxy and the Cisco Web Usage
Controls Dynamic Content Analysis engine.
between the Web Proxy and the Cisco Web Usage
Controls Dynamic Content Analysis engine.
No
No
DCA Engine Logs
(Dynamic Content
Analysis)
Analysis)
Records messages related to the Cisco Web Usage
Controls Dynamic Content Analysis engine.
Controls Dynamic Content Analysis engine.
Yes
Yes
Default Proxy Logs Records errors related to the Web Proxy.
This is the most basic of all Web Proxy related logs.
To troubleshoot more specific aspects related to the
Web Proxy, create a log subscription for the
applicable Web Proxy module.
To troubleshoot more specific aspects related to the
Web Proxy, create a log subscription for the
applicable Web Proxy module.
Yes
Yes
Disk Manager Logs Records Web Proxy messages related to writing to
the cache on disk.
No
No
External
Authentication
Logs
Authentication
Logs
Records messages related to using the external
authentication feature, such as communication
success or failure with the external authentication
server.
authentication feature, such as communication
success or failure with the external authentication
server.
Even with external authentication is disabled, this
log contains messages about local users
successfully or failing logging in.
log contains messages about local users
successfully or failing logging in.
No
Yes
Feedback Logs
Records the web users reporting misclassified
pages.
pages.
Yes
Yes
Log File Type
Description
Supports
Syslog Push?
Syslog Push?
Enabled by
Default?
Default?