Enable HTTP logging

By default, HTTP logging is enabled in the WebSEAL configuration file. For example:

[logging]
requests = yes
referers = yes
agents = yes

We can enable or disable each log independently from the others. If any stanza entry is set to no, logging is disabled for that file.

Configure HTTP logging in the [logging] stanza implements the standard event logging mechanism that is described in Audit event logging.

The following configurations are created when the WebSEAL HTTP logging stanza entries are enabled. These configurations accept the values of the requests-file, referers-file, agents-file, flush-time, and max-size stanza entries from the WebSEAL configuration file [logging] stanza:

request.log

logcfg = http.clf:file path=requests-file,flush=flush-time,
rollover=max-size,max_rollover_files=max-files,
log=clf,buffer_size=8192,queue_size=48

referer.log

logcfg = http.ref:file path=referers-file,flush=flush-time,
rollover=max-size,max_rollover_files=max-files,
log=ref,buffer_size=8192,queue_size=48

agent.log (common log format)

logcfg = http.agent:file path=agents-file,flush=flush-time,
rollover=max-size,max_rollover_files=max-files,
log=agent,buffer_size=8192,queue_size=48

See Process flow for logcfg logging for special considerations and conditions when we use both traditional HTTP logging ([logging] stanza) and the event logging mechanism ([aznapi-configuration] stanza).

• Timestamp
  
• Specify rollover thresholds
  
• Specify the frequency for flushing buffers
  
• Distinguishing virtual hosts
  

Parent topic: WebSEAL HTTP logging