Cisco Cisco Web Security Appliance S170 Guia Do Utilizador
![Cisco](https://files.manualsbrain.com/attachments/7380d0050044647c30f5c24bbbf5d0c0b6d9bb84/common/fit/150/50/faa183d287233c52228cfea3dbc2a127fe780f60564fcb0955d9c3d1cd23/brand_logo.png)
20-21
Cisco AsyncOS 8.0.6 for Web User Guide
Chapter 20 Monitor System Activity Through Logs
Access Log Field Descriptions and Identifiers
%XO
x-avc-app
The web application identified by the AVC
engine.
engine.
%Xp
x-icap-verdict
External DLP server scanning verdict
%XP
x-acl-added-headers
Unrecognized header. Use this field to log
extra headers in client requests. This supports
troubleshooting of specialized systems that
add headers to client requests as a way of
authenticating and redirecting those requests,
for example, YouTube for Schools.
extra headers in client requests. This supports
troubleshooting of specialized systems that
add headers to client requests as a way of
authenticating and redirecting those requests,
for example, YouTube for Schools.
%XQ
x-webcat-req-code-abbr
The URL category verdict determined during
request-side scanning, abbreviated.
request-side scanning, abbreviated.
%Xr
x-result-code
Scanning verdict information.
%XR
x-webcat-req-code-full
The URL category verdict determined during
request-side scanning, full name.
request-side scanning, full name.
%Xs
x-webroot-spyid
Webroot specific identifier: (Spy ID)
%XS
x-request-rewrite
Safe browsing scanning verdict.
Indicates whether or not either the safe
search or site content ratings feature was
applied to the transaction.
search or site content ratings feature was
applied to the transaction.
%Xt
x-webroot-trr
Webroot specific identifier: (Threat Risk
Ratio (TRR))
Ratio (TRR))
%XT
x-bw-throttled
Flag that indicates whether or not bandwidth
limits were applied to the transaction.
limits were applied to the transaction.
%Xu
x-avc-type
The web application type identified by the
AVC engine.
AVC engine.
%Xv
x-webroot-scanverdict
Malware scanning verdict from Webroot
%XV
x-request-source-ip
The downstream IP address when the
“Enable Identification of Client IP Addresses
using X-Forwarded-For” check box is
enabled for the Web Proxy settings.
“Enable Identification of Client IP Addresses
using X-Forwarded-For” check box is
enabled for the Web Proxy settings.
%XW
x-wbrs-score
Decoded WBRS score <-10.0-10.0>
%Xx
x-sophos-scanerror
Sophos specific identifier: (scan return code)
%Xy
x-sophos-file-name
The file location where Sophos found the
objectionable content. For non-archive files,
this value is the file name itself. For archive
file, it is the object in the archive, such as
objectionable content. For non-archive files,
this value is the file name itself. For archive
file, it is the object in the archive, such as
archive.zip/virus.exe
.
%XY
x-sophos-scanverdict
Sophos specific identifier: (scan verdict)
%Xz
x-sophos-virus-name
Sophos specific identifier: (threat name)
Format Specifier in
Standard Access Logs
Standard Access Logs
Log Field in W3C Logs
Description