Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

<get-security-log-information>

 

Usage

Description

Show auditable security log information

<destination-address>Destination address and optional prefix length
  • alert - Alert severity

  • crit - Critical severity

  • debug - Debug severity

  • emerg - Emergency severity

  • err - Error severity

  • info - Information severity

  • notice - Notice severity

  • warning - Warning severity

  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<destination-port>Destination port
  • alert - Alert severity

  • crit - Critical severity

  • debug - Debug severity

  • emerg - Emergency severity

  • err - Error severity

  • info - Information severity

  • notice - Notice severity

  • warning - Warning severity

  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<event-id>Event ID filter
  • alert - Alert severity

  • crit - Critical severity

  • debug - Debug severity

  • emerg - Emergency severity

  • err - Error severity

  • info - Information severity

  • notice - Notice severity

  • warning - Warning severity

  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<interface-name>Name of interface
  • alert - Alert severity

  • crit - Critical severity

  • debug - Debug severity

  • emerg - Emergency severity

  • err - Error severity

  • info - Information severity

  • notice - Notice severity

  • warning - Warning severity

  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<older-than>Events older than filter (YYYY-MM-DD.HH:MM:SS)
  • alert - Alert severity

  • crit - Critical severity

  • debug - Debug severity

  • emerg - Emergency severity

  • err - Error severity

  • info - Information severity

  • notice - Notice severity

  • warning - Warning severity

  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<policy-name>Policy name filter
  • alert - Alert severity

  • crit - Critical severity

  • debug - Debug severity

  • emerg - Emergency severity

  • err - Error severity

  • info - Information severity

  • notice - Notice severity

  • warning - Warning severity

  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<process>Process that generated the event
  • alert - Alert severity

  • crit - Critical severity

  • debug - Debug severity

  • emerg - Emergency severity

  • err - Error severity

  • info - Information severity

  • notice - Notice severity

  • warning - Warning severity

  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<protocol>Protocol filter
  • alert - Alert severity

  • crit - Critical severity

  • debug - Debug severity

  • emerg - Emergency severity

  • err - Error severity

  • info - Information severity

  • notice - Notice severity

  • warning - Warning severity

  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<newer-than>Events newer than filter (YYYY-MM-DD.HH:MM:SS)
  • alert - Alert severity

  • crit - Critical severity

  • debug - Debug severity

  • emerg - Emergency severity

  • err - Error severity

  • info - Information severity

  • notice - Notice severity

  • warning - Warning severity

  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<failure>Event was a failure
  • alert - Alert severity

  • crit - Critical severity

  • debug - Debug severity

  • emerg - Emergency severity

  • err - Error severity

  • info - Information severity

  • notice - Notice severity

  • warning - Warning severity

  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<success>Event was successful
  • alert - Alert severity

  • crit - Critical severity

  • debug - Debug severity

  • emerg - Emergency severity

  • err - Error severity

  • info - Information severity

  • notice - Notice severity

  • warning - Warning severity

  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<severity>Severity of the event
  • alert - Alert severity

  • crit - Critical severity

  • debug - Debug severity

  • emerg - Emergency severity

  • err - Error severity

  • info - Information severity

  • notice - Notice severity

  • warning - Warning severity

  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<source-address>Source address and optional prefix length
  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<source-port>Source port
  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<username>Username filter
  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<sort-by>Sort by selected field
  • destination-address - Sort by destination address

  • destination-port - Sort by destination port

  • interface-name - Sort by interface name

  • policy-name - Sort by policy name

  • protocol - Sort by protocol

  • source-address - Sort by source address

  • source-port - Sort by source port

  • time - Sort by time of event arrival

  • username - Sort by event user name

<ascending>Sort in ascending order
<descending>Sort in descending order
<detail>Show detail alarm information