Get Dfw Logs
Log filters are encapsulated in a FIQL filter query parameter. Sample filter: filter=(timestamp=gt=2020-07-24T00:00:00,timestamp=lt=2020-08-24T00:00:00;ruleId==a4ec73d6-9937-4b32-bdc7-b4dda5366391)
Supported filters are:
- timestamp. Log timestamp. This is optional. Must be in ISO 8601 format (i.e. 2020-07-24T00:00:00.000Z). Defaults to the current time.
- ruleId. Id of the firewall rule. This is optional. This field is responsible for filtering logs based on rule firewall rule id.
- addressFamily. IP address family. Either IPV4 or IPV6. This is optional.
- reason. Criteria for which an action is taken by the firewall rule. This is optional.
- action. Action taken by the firewall rule. This is optional.
- direction. Direction of network traffic on the distributed firewall. Can be IN or OUT. This is optional.
- protocol. The protocol used for communication between source and destination hosts. Can be TCP, UDP or PROTO. This is optional.
- sourceIpAddress. IP address of the source host. This is optional. Must be either in IPv4 or IPv6 format. This field is responsible for filtering logs based on the specified source IP.
- sourcePort. Port of the source host. This is optional. This field is responsible for filtering logs based on the specified source port.
- destinationIpAddress. IP address of the destination host. This is optional. Must be either in IPv4 or IPv6 format. This field is responsible for filtering logs based on the specified destination IP.
- destinationPort. Port of the destination host. This is optional. This field is responsible for filtering logs based on the specified destination port.
Request
URI
GET
https://{api_host}/cloudapi/1.0.0/vdcGroups/{vdcGroupId}/dfwPolicies/{policyId}/logs
COPY
Path Parameters
string
vdcGroupId
Required
vdcGroupId
string
policyId
Required
policyId
string
vdcGroupId
Required
vdcGroupId
string
policyId
Required
policyId
Query Parameters
string
filter
Optional
Filter for a query. FIQL format.
string
sortAsc
Optional
Field to use for ascending sort
string
sortDesc
Optional
Field to use for descending sort
integer
page
Required
Page to fetch, zero offset.
integer
pageSize
Required
Results per page to fetch.
Responses
200
OK
Returns DfwLogs of type(s) application/json;version=39.0
This response body class contains all of the following: Page , InlineDfwLogs1
{
"resultTotal": 0,
"pageCount": 0,
"page": 0,
"pageSize": 0,
"associations": [
{
"entityId": "string",
"associationId": "string"
}
],
"values": [
{
"timestamp": "2020-07-24T00:00:00.000+0000",
"addressFamily": "string",
"reason": "string",
"action": "string",
"ruleId": "string",
"ruleName": "string",
"direction": "string",
"packetLength": 0,
"protocol": "string",
"sourceIpAddress": "string",
"sourcePort": 0,
"destinationIpAddress": "string",
"destinationPort": 0
}
]
}
Availability
Added in 39.0
On This Page
Dfw Policy Operations
POST
Create Dfw Rule
DELETE
Delete Dfw Policy
DELETE
Delete Dfw Rule
GET
Get Dfw Logs
GET
Get Dfw Policy
GET
Get Dfw Rule
GET
Get Dfw Rules
PUT
Update Dfw Policy
PUT
Update Dfw Rule
PUT
Update Dfw Rules