Appendix C Log Formats and System Messages

Table C–1: Alert and IPS Block Log Formats (Continued)

Field Name

Sub-Field Name

Description

 

 

 

 

 

 

 

In Security Zone NAME

(string)

 

 

Example: ANY

 

Out Security Zone

(uuid)

 

UUID

 

 

 

 

 

Out Security Zone

(string)

 

NAME

Example: ANY

 

 

 

 

Date & Time (Seconds)

Beginning timestamp, in seconds, of the aggregation

 

 

period.

 

 

 

 

Date & Time

Beginning timestamp, in microseconds, of the

 

(Nanoseconds)

aggregation period.

 

 

 

 

Period

Aggregation period, in minutes. 0 = no aggregation.

 

 

 

 

Message Parameters

A string of values for special message formats used for

 

 

traffic thresholds. This value is usually blank.

 

 

 

 

Packet Trace Log Flag

Packet trace flag/version.

 

 

pt0 = off

 

 

pt1 = on

 

 

 

 

Packet Trace Bucket ID

Packet trace aggregation bucket sequence number.

 

 

 

 

Packet Trace Sequence

Packet trace aggregation bucket beginning sequence

 

Begin

number.

 

 

 

 

Packet Trace Sequence

Packet trace aggregation bucket ending sequence

 

End

number.

 

 

 

 

Number of characters

This is used for reverse parsing of the entry.

 

in the line

 

 

 

 

Audit Log Format

An example of a comma-delimited Audit Log entry follows:

48,2006-08-04 12:46:11,8,CLI,0.0.0.0,LCD,0,0,labuser,"Created policy rule 100"

The following table describes the downloadable format of the Audit Log:

Table C–2: Audit Log Format

Field Name

Description

 

 

 

 

Seq

Unique sequence number for this log file.

 

 

294 X Family LSM User’s Guide V 2.5.1