How to extract the email logs of 200+ email addresses easily (script)

pbabu6001 · ‎11-16-2016

Hi,

I got an request to check more than 200+ email addresses email logs and I need to prepare a report on this. Could you please provide me the assistance on is there any script to execute this?

Thank you so much!!

dmccabej · ‎11-16-2016

Hello,

There is no scripting support from the CLI of the ESA, but you can FTP/Syslog/SCP the mail_logs off to another host and perform your scripts from there. You can also export message tracking information, but this really depends on what your specific needs are. Can you elaborate?

Thanks!

-Dennis M.

pbabu6001 · ‎11-17-2016

Hi Dennis,

Thanks for your response on my request. I have blacklisted multiple domains and email addresses (more than 200) on our Incoming Mail Policies and wants to delete some of them only if there are no emails from them (From those email addresses or domains - No emails for last one month).

I will FTP the mail_logs off to another host, but the problem is I have lakh of internal users. So, it is difficult to find. Any way I can extract these mail logs from Management server, but it will much time. Please let me know if you need more clarity on this, I will glad to answer you. Thank you so much!!

dmccabej · ‎11-17-2016

Hello,

You're welcome. :)

I agree that if you're not familiar with scripting it may take some time to sift through the mail_logs to search for these domains/hosts.

As a workaround, I think the easiest way for you may be to just check Message Tracking. All you would need to do is set the start/end dates and enter in the domain and/or sender you're looking for. Then you can see if you've received any emails within whatever time frame you need. Obviously this will take a bit more time, but it gets the job done.

This can be checked in the GUI via Monitor --> Message Tracking.

Hope that helps. :)

Thanks!

-Dennis M.