-
Notifications
You must be signed in to change notification settings - Fork 0
/
messages_example_zywall.txt
16 lines (16 loc) · 4.09 KB
/
messages_example_zywall.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
<141>1 2016-10-10T11:20:26+01:00 2016 zywall-usg-20 - - - zywall-usg-20 src="0.0.0.0:0" dst="0.0.0.0:0" msg="name=lan1,status=Up,TxPkts=119663334,RxPkts=61267490,Colli.=0,TxB/s=3086,RxB/s=3363" note="INTERFACE STATISTICS" user="unknown" devID="fff11a2bdf2d" cat="INTERFACE STATISTICS"
<141>1 2016-10-10T11:20:26+01:00 2016 zywall-usg-20 - - - zywall-usg-20 src="0.0.0.0:0" dst="0.0.0.0:0" msg="name=lan2,status=Down,TxPkts=5,RxPkts=0,Colli.=0,TxB/s=0,RxB/s=0" note="INTERFACE STATISTICS" user="unknown" devID="fff11a2bdf2d" cat="INTERFACE STATISTICS"
<141>1 2016-10-10T11:20:26+01:00 2016 zywall-usg-20 - - - zywall-usg-20 src="0.0.0.0:0" dst="0.0.0.0:0" msg="name=dmz,status=Down,TxPkts=2,RxPkts=0,Colli.=0,TxB/s=0,RxB/s=0" note="INTERFACE STATISTICS" user="unknown" devID="fff11a2bdf2d" cat="INTERFACE STATISTICS"
<137>1 2016-10-11T11:21:27+01:00 2016 zywall-usg-20 - - - zywall-usg-20 src="200.191.194.8:38152" dst="85.238.183.42:22" msg="priority:1, from WAN to ZyWALL, TCP, service Standard_Ports, DROP" note="ACCESS BLOCK" user="unknown" devID="fff11a2bdf2d" cat="Firewall" class="Access Control" ob="0" ob_mac="000000000000" dir="WAN:ZyWALL" protoID=6 proto="Standard_Ports"
<142>1 2016-10-11T11:20:29+01:00 2016 zywall-usg-20 - - - zywall-usg-20 src="192.168.5.10:58944" dst="40.90.20.60:993" msg="Traffic Log" note="Traffic Log" user="unknown" devID="fff11a2bdf2d" cat="Traffic Log" duration=4819 sent=2836 rcvd=8058 dir="lan1:" protoID=6 proto="others"
<142>1 2016-10-12T11:20:29+01:00 2016 zywall-usg-20 - - - zywall-usg-20 src="192.168.5.10:40136" dst="40.100.160.20:993" msg="Traffic Log" note="Traffic Log" user="unknown" devID="fff11a2bdf2d" cat="Traffic Log" duration=10473 sent=6384 rcvd=16252 dir="lan1:" protoID=6 proto="others"
<142>1 2016-10-12T11:20:30+01:00 2016 zywall-usg-20 - - - zywall-usg-20 src="192.168.5.20:59155" dst="80.23.120.24:53" msg="Traffic Log" note="Traffic Log" user="unknown" devID="fff11a2bdf2d" cat="Traffic Log" duration=300 sent=70 rcvd=147 dir="lan1:wan1" protoID=17 proto="domain"
<137>1 2016-10-12T11:20:31+01:00 2016 zywall-usg-20 - - - zywall-usg-20 src="200.191.194.8:38152" dst="80.230.130.40:22" msg="priority:1, from WAN to ZyWALL, TCP, service Standard_Ports, DROP" note="ACCESS BLOCK" user="unknown" devID="fff11a2bdf2d" cat="Firewall" class="Access Control" ob="0" ob_mac="000000000000" dir="WAN:ZyWALL" protoID=6 proto="Standard_Ports"
<142>1 2016-10-12T12:21:32+01:00 2016 zywall-usg-20 - - - zywall-usg-20 src="192.168.5.20:37561" dst="82.8.118.30:53" msg="Traffic Log" note="Traffic Log" user="unknown" devID="fff11a2bdf2d" cat="Traffic Log" duration=300 sent=70 rcvd=147 dir="lan1:wan1" protoID=17 proto="domain"
<142>1 2016-10-12T12:21:33+01:00 2016 zywall-usg-20 - - - zywall-usg-20 src="192.168.5.10:37175" dst="23.20.10.20:443" msg="Traffic Log" note="Traffic Log" user="unknown" devID="fff11a2bdf2d" cat="Traffic Log" duration=123 sent=2574 rcvd=7018 dir="lan1:wan1" protoID=6 proto="https"
<30>1 2016-10-12T11:48:37+01:00 FILE_SERVER qlogd 7483 - - qlogd[7483]: event log: Users: System, Source IP: 127.0.0.1, Computer name: localhost, Content: [App Center] TwonkyMedia 8.2.1.0 installation succeeded.
<30>1 2016-10-12T11:48:42+01:00 FILE_SERVER qlogd 7483 - - qlogd[7483]: event log: Users: System, Source IP: 127.0.0.1, Computer name: localhost, Content: [App Center] TwonkyMedia enabled.
<38>1 2016-10-12T12:00:00+01:00 FILE_SERVER qlogd 7483 - - qlogd[7483]: conn log: Users: user_01, Source IP: 192.168.5.13, Computer name: ---, Connection type: SSH, Accessed resources: ---, Action: Login OK
<38>1 2016-10-12T12:00:00+01:00 FILE_SERVER qlogd 7483 - - qlogd[7483]: conn log: Users: user_01, Source IP: 192.168.5.13, Computer name: ---, Connection type: SSH, Accessed resources: ---, Action: Logout
<38>1 2016-10-12T12:02:06+01:00 DB_SERVER qlogd 11573 - - qlogd[11573]: conn log: Users: user_01, Source IP: 192.168.5.13, Computer name: ---, Connection type: SSH, Accessed resources: ---, Action: Login OK
<38>1 2016-10-12T12:02:32+01:00 DB_SERVER qlogd 11573 - - qlogd[11573]: conn log: Users: user_01, Source IP: 192.168.5.13, Computer name: ---, Connection type: HTTP, Accessed resources: ---, Action: Logout