Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Configuring Full Traffic Logging : Downloading log files
Downloading log files
Forcepoint Web Security Cloud | Configuring Full Traffic Logging
To download log data when it is available, run the script that you have set up. If you are using the provided sample script, the available parameters to use with the script are described below.
Some parameters have a short form (for example, -v) and a long form (for example, --verbose). For these parameters, both options are listed.
-u <username>
-p <password>
-h <hostname>
-d <file path>
--proxy <proxy details>
--format= <format>
wc3: WC3 Extended Log file Format (http://www.w3.org/TR/WD-logfile.html)
Optional. Use in conjunction with the format parameter to download and keep a copy of the *.gz data file in the destination directory. This overrides the default behavior of the format parameter.
Optional.Keeps the original data file on the source server after download. This parameter is provided for testing purposes while configuring the format parameter described above, enabling you to download a file in different formats. Note that files are still only retained for 14 days, and you will still receive a warning after 7 days if a downloaded data file remains on the server.
Due to the volume of data, we recommend importing the information into a database to analyze the downloaded log files. For more information about the downloaded data, see File format definition for full traffic logging.
Scheduling log file download
Once you have run an initial download and determined the parameters you want to use in your script, set up a scheduled service to run automatic downloads.
We recommend that you download the log files at least once a day. To avoid periods of high network traffic, select a random time for the download (for example, somewhere between 10 and 50 minutes past the hour).
Scheduling on Windows
Before scheduling downloads from the cloud service, make sure that the Windows Task Scheduler service is started. To check this:
1.
Open the Windows Services tool (Start > Control Panel > Administrative Tools > Services or Server Manager > Tools > Services).
2.
Scroll down to Task Scheduler.
*
*
Otherwise, click Start or Resume to start the service.
To schedule the log file download:
1.
Open the Windows Scheduled Tasks tool (Start > Control Panel > Scheduled Tasks or Server Manager > Tools > Scheduled Tasks).
2.
Double-click Add Scheduled Task.
3.
a.
b.
c.
d.
Enter your network user name and password (not the user name and password you set up in the Cloud TRITON Manager).
e.
Mark the Open advanced properties for this task checkbox, then click Finish.
4.
On the Task tab, add the -u, -p, and -d parameters to the end of the Run field, before the closing quotes, as well as any other parameters you want to use.
The Run field might look similar to this:
"\\server\users\jsmith\hosted_logs\full_traffic_log_download.pl -u FTL_user@example.com -p Ft2010Logs -d /hostedweb/logs"
5.
Scheduling on Linux
Create a cron job to schedule your script to run at the times you want. For more information in Linux, see man cron and man crontab.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Configuring Full Traffic Logging : Downloading log files
Copyright 2022 Forcepoint All rights reserved.