View the WildFire Appliance System Logs
Focus
Focus
Advanced WildFire

View the WildFire Appliance System Logs

Table of Contents

View the WildFire Appliance System Logs

Where Can I Use This?
What Do I Need?
  • WildFire Appliance
  • WildFire License
Use a terminal emulator, such as PuTTY, connect to the WildFire appliance using either a secure shell connection (SSH) or a physical direct serial connection from a serial interface on your management computer to the Console port on the device.
  1. Launch the terminal emulation software and select the type of connection (Serial or SSH).
    • To establish an SSH connection, enter the WildFire hostname or IP address of the device you want to connect to and set the port to
      22
      .
    • To establish a Serial connection, connect a serial interface on management computer to the Console port on the device. Configure the Serial connection settings in the terminal emulation software as follows:
      • Data rate:
        9600
      • Data bits:
        8
      • Parity:
        none
      • Stop bits:
        1
      • Flow control:
        none
  2. When prompted to log in, enter your administrative credentials.
  3. On a WildFire appliance, enter the following command:
    admin@WF-500>show log system subtype direction equal backward
    This command displays all WildFire logged events categorized as a wildfire-appliance subtype from oldest to newest.
    • You can reverse the display of the logs to newest to oldest by adding the command argument
      direction equal backward
      .
    • The log messages returned by the WildFire appliance CLI can include numerous subtypes. You can filter the logs based on a common keyword. Use the following command argument to filter based on a specific string:
      match queue <
      keyword
      >
      The following WildFire appliance log shows the system initialization processes during startup.
    Time Severity Subtype Object EventID ID Description =============================================================================== 2017/03/29 12:04:33 medium general general 0 Hostname changed to WF-500 2017/03/29 12:04:40 info general general 0 VPN Disable mode = off 2017/03/29 12:04:41 info hw ps-inse 0 Power Supply #1 (top) inserted 2017/03/29 12:04:41 high general system- 1 The system is starting up. 2017/03/29 12:04:41 info raid pair-de 0 New Disk Pair A detected. 2017/03/29 12:04:41 info raid pair-de 0 New Disk Pair A detected. 2017/03/29 12:04:41 info raid pair-de 0 New Disk Pair B detected. 2017/03/29 12:04:41 info raid pair-de 0 New Disk Pair B detected. 2017/03/29 12:04:41 info cluster cluster 0 Cluster daemon is initializing. 2017/03/29 12:04:41 info port eth1 link-ch 0 Port eth1: Up 1Gb/s Full duplex 2017/03/29 12:04:41 info port MGT link-ch 0 Port MGT: Up 1Gb/s Full duplex 2017/03/29 12:04:41 info port eth3 link-ch 0 Port eth3: Up 1Gb/s Full duplex 2017/03/29 12:04:41 info port eth2 link-ch 0 Port eth2: Up 1Gb/s Full duplex 2017/03/29 12:04:41 info general general 0 Power Supply #1 (top) is not present on startup 2017/03/29 12:04:41 info general general 0 Power Supply #2 (bottom) is not present on startup

Recommended For You