HP X Unified Security Platform manual 107

show

Common show log command flags

The different X family logs have a number of command flags that are common to all logs.

-c

clears the screen before displaying log entries.

-end-time < yyyyyymmdd hh:mm:ss “yyyyyymmdd hh:mm:ss”>

filters out log entries timestamped after yyyyyymmdd, hh:mm:ss , or “yyyyyymmdd

hh:mm:ss”.

-match

shows only those log entries that match a specified pattern, similar to a file grep.

-max-records <1-65535>

shows the first 1 to 65535 records in the log.

-n<10-128>

shows 10 to 128 log entries at a time.

-start-time < yyyymmdd hh:mm:ss “yyyyyymmdd hh:mm:ss”>

filters out log entries timestamped before yyyyyymmdd, hh:mm:ss , or

“yyyyyymmdd hh:mm:ss”.

-tail

shows the last -nrecords in the log.

Note: The -tailflag cannot be used with the -severity flag, nor can it be used with the -<module-name>flag

-width <38-256>

width of output.

alert

displays alert log entries. Alert log entries include date/time, policy name, vulnerability filter name, service, source address, and destination address information about network traffic that has triggered filters.

-modulemodule-name

displays records according to the module name. Refer to the log entries for module names.

audit

displays audit log entries. Audit log entries include date, time, access method, audit action, source IP address, access role, login name, action outcome [pass/fail], and action attempted.

-user“login-name”

displays log entries relating to the specified login name.