List of logs

Logs details of Apache access.

Logs details of Apache errors.

Logs information from the service responsible for adding reporting data to the report database, and generating scheduled reports.

Secure Web Gateway checks for new anti-virus definitions at frequent intervals. If new updates are available from Avira, it downloads them and validates them to ensure they are fit for live deployment. This log shows the messages output by the download and validation scripts.

When exported to a syslog server, the time stamp of this log represents the time of export, rather than the time the log was generated.

Logs details of backups.

Logs the use of secure shell (sshd) to log in to the Secure Web Gateway Console, and the user of the su command from the Console.

Logs events from the HTTPS decryption layer.

Log output from syslog-ng.

Logs information about hardware events, such as disk-failures and temperature warnings.

Logs information about statistics displayed by the Health page.

This service manages Alarms and Housekeeping tasks.

Logs Kerberos details.

Logs Linux kernel information.

Logs Mail Alert Transport information.

Logs details of message transactions between Secure Web Gateway and a connected Information Governance server (IGS) or Critical Information Protection server (CIPS).

Logs details of peer communications.

Log for the service which intercepts HTTPS traffic when transparency is enabled.

Logs completed request transactions in Web Server Extended Log File format.

Logs the starting and stopping of the system services during:

• System startup
• System shutdown
• Installation of a software upgrade

When exported to a syslog server, the time stamp of this log represents the time of export, rather than the time the log was generated.

Logs the status history of supported services, including managed lists and anti-virus updates.

Displays detected threats including the EICAR test, which is used by Sophos to validate updates to the anti-virus definitions.

When exported to a syslog server, the time stamp of this log represents the time of export, rather than the time the log was generated.

Secure Web Gateway checks for new anti-virus definitions at frequent intervals. If new updates are available from Sophos, it downloads them and validates them to ensure they are fit for live deployment. This log shows the messages output by the download and validation scripts.

When exported to a syslog server, the time stamp of this log represents the time of export, rather than the time the log was generated.

Logs information about the SQL database.

Logs all system errors collectively.

Logs output from general housekeeping (e.g. database optimization) and configuration deployment tasks

Logs data written to /var/log/cs-gateway/daemon.log, in particular from the Network Time Protocol service.

Logs information about the Transaction Log Export Log.

Logs information from the service responsible for automatic software upgrades.

Logs information about the URL Category Database Updates.

Logs information relating to Active Directory user authentication.

Logs information from the Secure Web Gateway web server that handles user interface requests.

Logs user session navigation information.

Logs events information from the Web Proxy. The information recorded depends on the logging level (Error, Warning, or Information) selected on the Proxy Monitoring page.

Logs requests handled by the Web Proxy. To record the information, Proxy Request Logging needs to be enabled on the Proxy Monitoring page. This log file is purged of data older than 30 days, and displays an alarm if the data exceeds a default threshold value of 2 GB.

Logs web requests and responses