Bay Networks 5390 Administering page 531

Each logged message in the acp_logfile contains the following fields:
• IP address of the Model 5390 server.
• Sequence number.
• Port number.
• Date.
• Time.
• Module.
• Event.
• Packets in.
• Packets out.
• Bytes in.
• Bytes out.
• Protocol-dependent information.
• Username.
All fields are separated by colons and are encoded for use by UNIX utilities that sort, merge, select,
or filter streams.
When more than one host functions as a security server, the log files can be merged and sorted by
the date and time fields. Following is a sample log file:
132.245.11.11:420b02bb:#01:950626:003015:cli hook:login:moseley
132.245.11.11:420b02bc:#01:950626:003015:telnet:login:132.245.77.1:23:moseley
132.245.11.11:420b02bd:#02:950626:010620:ipx:login:djones
132.245.11.11:420b02be:#02:950626:010900:ipx:logout:djones
132.245.11.11:420b02be:#02:950626:010900:ipx:acct:191:190:29486:12577:djones
132.245.11.11:420b02bf:#01:950626:011456:telnet:logout:132.245.77.1:moseley
132.245.11.11:420b02c0:#01:950626:011502:cli hook:logout:moseley
132.245.11.11:420b02c0:#01:950626:011502:cli hook:acct:0:0:1021:143882:moseley
132.245.11.11:420b02c1:#04:950626:012317:rlogin:logout:132.245.33.7:mildram
132.245.11.11:420b02c2:#04:950626:012317:rlogin:logout:132.245.33.16:mildram
132.245.11.11:420b02c3:#04:950626:012317:cli hook:logout:mildram
132.245.11.11:420b02c3:#04:950626:012317:clihook:acct:0:0:10286:196301:mildra
132.245.11.11:420b02c4:#01:950626:012420:cli hook:login:mildram
132.245.11.11:420b02c5:#01:950626:012421:rlogin:login:132.245.33.7:513:mildram
893-741-B
Network Administration
B1-23