https://community.cisco.com/t5/web-security/ironport-setup/m-p/2297551#M3722 <HTML><HEAD></HEAD><BODY><P>Hi Tiyanjane,</P><P></P><P>Grep for&nbsp; the access logs on the WSA using the IP of a test PC while tailing the logs in order to determine whether or not the traffic is being filtered by the WSA.</P><P></P><P>To grep the access logs for an entry, SSH into the WSA and run the following command from the CLI:</P><P></P><P></P><P>1. Grep</P><P></P><P></P><P>2. Enter the number of the log you wish to grep.</P><P>[]&gt; 1</P><P></P><P></P><P>3. Enter the regular expression to grep.</P><P>[]&gt; IP of the PC that the issue is being re produced on.</P><P></P><P></P><P>4. Do you want this search to be case insensitive? [Y]&gt; </P><P></P><P></P><P>5. Do you want to search for non-matching lines? [N]&gt; </P><P></P><P></P><P>6. Do you want to tail the logs? [N]&gt; Yes</P><P></P><P></P><P>7. Do you want to paginate the output? [N]&gt; </P><P></P><P></P><P></P><P>Sincerely, <BR /> <BR />Erik Kaiser <BR />WSA CSE <BR />WSA Cisco Forums Moderator</P></BODY></HTML> Tue, 06 Aug 2013 18:23:56 GMT Erik Kaiser 2013-08-06T18:23:56Z https://community.cisco.com/t5/web-security/ironport-setup/m-p/2297550#M3721 <P>I&nbsp; have a recently acquired an Ironport WSA 170 web appliance. My current setup is i am running 2 Microsoft ISA servers where users are getting their internet.</P><P>I have deployed the WSA behind the proxies so that I filter web traffic. WSA is configured in explicit forward mode. The problem&nbsp; I am having is that the web traffic is not getting filtered.</P><P></P><P>Please help</P> Mon, 05 Aug 2013 10:01:17 GMT https://community.cisco.com/t5/web-security/ironport-setup/m-p/2297550#M3721 Tiyanjane Nyirenda 2013-08-05T10:01:17Z https://community.cisco.com/t5/web-security/ironport-setup/m-p/2297551#M3722 <HTML><HEAD></HEAD><BODY><P>Hi Tiyanjane,</P><P></P><P>Grep for&nbsp; the access logs on the WSA using the IP of a test PC while tailing the logs in order to determine whether or not the traffic is being filtered by the WSA.</P><P></P><P>To grep the access logs for an entry, SSH into the WSA and run the following command from the CLI:</P><P></P><P></P><P>1. Grep</P><P></P><P></P><P>2. Enter the number of the log you wish to grep.</P><P>[]&gt; 1</P><P></P><P></P><P>3. Enter the regular expression to grep.</P><P>[]&gt; IP of the PC that the issue is being re produced on.</P><P></P><P></P><P>4. Do you want this search to be case insensitive? [Y]&gt; </P><P></P><P></P><P>5. Do you want to search for non-matching lines? [N]&gt; </P><P></P><P></P><P>6. Do you want to tail the logs? [N]&gt; Yes</P><P></P><P></P><P>7. Do you want to paginate the output? [N]&gt; </P><P></P><P></P><P></P><P>Sincerely, <BR /> <BR />Erik Kaiser <BR />WSA CSE <BR />WSA Cisco Forums Moderator</P></BODY></HTML> Tue, 06 Aug 2013 18:23:56 GMT https://community.cisco.com/t5/web-security/ironport-setup/m-p/2297551#M3722 Erik Kaiser 2013-08-06T18:23:56Z