Log file format
Is there any documentation that speaks the log file format (key/value, fields headers, etc)?
We are starting to ingest logs into Splunk and I'd like to see how the log if formatted so I know what field names to assign to specific variables.
What product is your inquiry regarding?
If VShell/Windows, what is the version that is installed?
What edition are you using (FTPS or non-FTPS)? (If FTPS, are you trying to analyze SFTP or FTPS logs? Or both?)
Is Use W3C log file format enabled in the Common / Logging category of VShell's control panel?
Log File Format
Some general information can be found here regarding the W3C fields:
Here is a quick description of how they are used by VShell and VShell FTPS:
Name of the service that is generating the log (VSHELLSSH2 or VSHELLFTPS)
Type of message being logged: Error (err), Warning (warn), Informational (info), Connection (conn), Authentication (auth), SFTP (sftp), Port Forward (fwd), Debug (dbg), LSA (lsa), FTPS (ftps)
Session ID of the connection that the message applies to
IP address of the client
port of the client
Username sent from the client
Used by VShell FTPS only. Specifies the command sent by the client
File or folder path of the current file transfer operation
Status code sent to the client for the last operation
Total bytes sent from the client to the server (uploads)
Total bytes sent from the server to the client (typically downloads, but
could also be an FTP directory listing)
Total bytes sent
IP address of the server
Port of the server
Specific log message
|format , log , logging|