|
|
|
|
|
|
Log Item
|
Description
|
Example
|
|---|---|---|
|
Time
|
Date and time when recorded
|
2014-02-11 22:51:00
|
|
User Name
|
The user account if Deep Edge is configured as
LDAP or Local User authentication. Otherwise, it will be the Client IP address
|
Lily
Jerry
|
|
Message Type
|
Access log
|
access log
|
|
URL
|
URL visited by clients, if applicable
|
u034024.778669.com/
|
|
Client IP
|
Source IP address
|
192.168.1.101
|
|
Server IP
|
Destination IP address
|
192.168.1.119
10.64.1.55
|
|
Domain
|
The domain visited by clients, if applicable
|
www.google.com
|
|
File Name
|
The file name downloaded by clients if applicable
|
eicar.zip
|
|
App Name
|
The application name identified by Deep Edge
|
DNS
HTTP
Sina Weibo
|
|
App Attribute Name
|
The granular application name
|
Sina Weibo-Post Message
|
|
URL Category
|
The URL Category name identified by Deep Edge
|
Shopping
Spyware
|
|
Session Start Time
|
Start time of the traffic
|
2014-02-11 15:50:53
|
|
Session End Time
|
End time of the traffic
|
2014-02-11 15:53:28
|
|
Source Interface
|
Source network interface
|
eth0
|
|
Destination Interface
|
Destination network interface
|
eth1
|
|
Source Port
|
Port Number
|
42074
39199
|
|
Destination Port
|
Port Number
|
53
80
|
|
Transfer Protocol
|
TCP/UDP/ICMP/ICMPv6
|
TCP
|
|
Policy Name
|
The security policy name for traffic control
|
Default
known-user
|
|
IPS Rule
|
The IPS rule name if it is triggered by IPS Scan
|
--
|
|
Malware Name
|
The virus name blocked by an Anti-Malware scan
|
Eicar
|
|
WRS Score
|
The score of URL queried by WRS, if applicable. The scope is 0 ~ 100. A higher
value has a better reputation.
|
49
|
|
ERS Category
|
1 = blocked by ERS; 0 = otherwise
|
0
|
|
Mail Sender
|
The message traffic mail sender. Default is empty.
|
--
|
|
Mail Receiver
|
The message traffic mail recipient. Default is empty.
|
--
|
|
Mail Subject
|
The message traffic mail subject. Default is empty.
|
--
|
|
Action
|
Default is empty. If specified, Allow/Block/Monitor
|
Allow
|