...
8. Enter a comment in the Comment field and click Commit Changes. After successful commit, a message, "Your changes have been committed.", appears.
Recommended Log Fields
Note: Arrange the Log Fields using below sequence.
Cisco(R) Ironport Web Security |
timestamp |
c-ip |
c-port |
cs(Referer) |
cs(User-Agent) |
cs(X-Forwarded-For) |
cs-auth-group |
cs-method |
cs-mime-type |
cs-uri |
cs-url |
cs-username |
cs-version |
date |
time |
s-hierarchy |
s-hostname |
s-ip |
s-port |
sc-http-status |
sc-result-code |
sc-result-code-denial |
cs-bytes |
sc-bytes |
x-acltag |
x-elapsed-time |
x-mcafee-av-virustype |
x-mcafee-scanverdict |
x-mcafee-virus-name |
x-result-code |
x-webcat-code-full |
x-webroot-scanverdict |
x-webroot-spyid |
x-webroot-threat-name |
x-amp-verdict |
x-amp-malware-name |
x-amp-score |
x-amp-upload |
x-amp-filename |
x-amp-sha |
LCP Configuration Parameters
Table 1-3: The Cisco IronPort event collector (FTP - 3798) properties to be configured by MDR are shown in the table.
...