ewalker-waf-perf-logs
Get performance logs from eWalker WAF devices.
ewalker-waf-perf-logs [profile=PROFILE] [duration=NUM{mon|w|d|h|m|s}] [from=yyyyMMddHHmmss] [to=yyyyMMddHHmmss] [order=ORDER]
- profile=PROFILE
- eWalker WAF connect profile code
- duration=NUM{mon|w|d|h|m|s}
- Scan only recent data. You should use s(second), m(minute), h(hour), d(day), mon(month) time unit. For example,
10smeans data from 10 seconds earlier. - from=yyyyMMddHHmmss
- Start time of range. yyyyMMddHHmmss format. If you omit time part, it will be padded by zero.
- to=yyyyMMddHHmmss
- End time of range. yyyyMMddHHmmss format. If you omit time part, it will be padded by zero.
- order=ORDER
- Scan direction.
descorasc.
Output Fields
| Field | Type | Name | Description |
|---|---|---|---|
| _time | Date | Time | Log time |
| profile | String | Connect profile | eWalker WAF connect profile code |
| es_id | String | ID | Elastic log id |
| device_ip | IP address | Device IP | WAF device IP address |
| cpu_usage | Double | CPU usage | In percent |
| mem_usage | Double | Memory usage | In percent |
| disk_usage | Double | Disk usage | In percent |
| cpu_avg | Double | CPU average usage | In percent |
| cpu_max | Double | CPU max usage | In percent |
| cpu_min | Double | CPU min usage | In percent |
| mem_total | Long | Memory total | In bytes |
| mem_used | Long | Memory used | In bytes |
| mem_free | Long | Memory free | In bytes |
| mem_avg | Double | Memory average used | In bytes |
| mem_max | Long | Memory max | In bytes |
| mem_min | Long | Memory min | In bytes |
| vmem_total | Long | Virtual memory total | In bytes |
| vmem_used | Long | Virtual memory used | In bytes |
| disk_total | Long | Disk total | In bytes |
| disk_used | Long | Disk used | In bytes |
| disk_free | Long | Disk free | In bytes |