Querying Logs Parent topic

Procedure

  1. Click LogsQuery.
    The Log Query screen displays.
  2. Select the date range.
  3. Select the type of entry.
  4. (Optional) Specify any of the following criteria:
    • For Security Risk Scan, Attachment Blocking, Content Filtering, Unscannable Message Parts, Data Loss Prevention, and Web Reputation queries:
      • Found in
      • Sender
      • Recipient
      • Subject
      • Attachment
    • For Update and Scan Events queries:
      • Keyword
    • For Event Tracking queries:
      • Name
      • IP address
      • Log type
      • Description
      • Source type
    • For Virtual Analyzer Submissions queries:
      • Sender
      • Recipient
      • Subject
      • File name or URL
  5. Specify the option for Sort by.
  6. Specify the number of items to display per page.
  7. Select the Query targets for the query.
    • Local server
    • Remote server(s)
      1. Select the Server group from the drop-down.
      2. Click the server name in the Available Server(s) list and click Add >> to include the server(s) to the Selected Server(s) list.
  8. Click Display Logs.