Kerio Tech 6 22.6 Debug Log

22.6 Debug Log

271

•[18/Apr/2008 10:22:47] — date and time when the event was logged (note: Con-

nection logs are saved immediately after a disconnection).

•[ID] 613181 —WinRoute connection identiﬁcation number

•[Rule] NAT— name of the traﬃc rule which has been used (a rule by which the traﬃc

was allowed or denied).

•[Service] HTTP — name of a corresponding application layer service (recognized by

destination port).

If the corresponding service is not deﬁned in WinRoute (refer to chapter 14.3), the

[Service] item is missing in the log.

•[User] james name of the user connected to the ﬁrewall from a host which partici-

pates in the traﬃc.

If no user is currently connected from the corresponding host, the [User] item is

missing in the log.

•[Connection] TCP 192.168.1.140:1193 -> hit.top.com:80 —protocol, source

IP address and port, destination IP address and port. If an appropriate log is found in

the DNS module cache (see chapter 8.1), the host’s DNS name is displayed instead of

its IP address. If the log is not found in the cache, the name is not detected (such DNS

requests would slow WinRoute down).

•[Duration] 121 sec — duration of the connection (in seconds)

•[Bytes] 1575/1290/2865 — number of bytes transferred during this connection

(transmitted /accepted /total).

•[Packets] 5/9/14 — number of packets transferred through this connection

(transmitted/accepted/total).

22.6 Debug Log

Debug (debug information) is a special log which can be used to monitor certain kinds of

information, especially for problem-solving. Too much information could be confusing and

impractical if displayed all at the same time. Usually, you only need to display information

relating to a particular service or function. In addition, displaying too much information slows

WinRoute’s performance. Therefore, it is strongly recommended to monitor an essential part

of information and during the shortest possible period only.

Selection of information monitored by the Debug log

The window’s context menu for the Debug log includes (see chapter 22.2) further options for

advanced settings of the log and for an on-click one-time view of status information.

Note: These options are available only to users with full administration rights for WinRoute

(see chapter 15.1).

IP Traﬃc

This function enables monitoring of packets according to the user deﬁned log expression.