The system log (Syslog) shows events that occurred in the system.
To assist in finding the events of interest, the records can be filtered by various criteria.
In addition, UserGate LogAn provides an advanced search mode where you can create complex search filters using a specialized query language, the syntax of which is described later in the Data Search and Filtering section.
You can save the configured filter by clicking Save as. The saved filter will be available in the Favorite filters tab.
The administrator can select the columns that will be logged. To do that, point the mouse cursor to the name of any column, click the arrow that will appear to the right of the column name, choose Columns, and select the desired parameters in the context menu.
The log contains the following information:
-
UserGate node name.
-
Time.
-
Syslog severity.
-
Object.
-
Computer name.
-
Application from which the information was obtained.
-
Process ID (PID).
-
Event data.
Click Show to open a window with the details for the application log record.
Click Add to incident to add the log record to the incident information.
By clicking Export as CSV, the administrator can save the filtered log data in a .csv file for subsequent analysis.