McAfee MAP-3300-SWG Product Guide - Page 266
Table 264, Alert tokens for Email alerts Logging and Alerting, Token name, Description
UPC - 731944547008
View all McAfee MAP-3300-SWG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 266 highlights
Overview of System features Logging, Alerting and SNMP Table 264 Alert tokens for Email alerts (Logging and Alerting) (continued) Token name Description %SERVERUSERNAME%: The login name of the user (POP3 and FTP) %LOCALTIME%: Local time %UTCTIME%: UTC time %WEBSHIELDNAME%: Messaging and Web Security appliance name %WEBSHIELDIP%: Messaging and Web Security IP address %APPLICATION%: The name of the process that generated the event %SENDER%: Envelope Email Sender (SMTP) %RECIPIENTS%: Envelope Email recipient list (SMTP) %DETECTIONS%: List of detections in the item %ICAP_X_CLIENT_IP%: The original web client IP address (ICAP) %ICAP_X_SERVER_IP%: The original web server IP address (ICAP) %AUTH_USER%: The name of the authenticated web user (HTTP and ICAP) %POLICY%: The name of the policy that triggered the event %POLICY_ID%: The ID of the policy that triggered the event %SUBJECT%: Email Subject (SMTP) %SIZE%: Size of data %AVDATVERSION%: The DAT version used by the anti-virus engine (AV) %AVENGINEVERSION%: The version of the anti-virus engine (AV) %ATTACHMENTNAME%: Name of the item being scanned (AV, DLP) %ATTACHMENTNAME%: Name of the item being scanned (compliance) %BLOCKED_URL%: The URL that was requested and blocked by the web categorization engine (URL) %BLOCKED_URL_ICAP%: The URL that was requested and blocked by the web categorization engine (URL) for the ICAP REQMOD %DLP_RULE%: The registered document categories that triggered %DLP_FINGERPRINTSOURCE%: The registered document name %DLP_REPORT%: Detailed report containing the document name, the category name, the size and the digest as per the registered documents %FILESYSTEM%: The name of the filesystem on the appliance (system events) %FILTERCONTEXT%: The name or names of the rules that triggered (compliance) %SPAMSCORE%: Spam score (AS) %SPAMRULESBROKEN%: The name or names of the spam rules that triggered the detection (AS) %SPAMTHRESHOLD%: Spam reporting threshold (AS) %URL_CATEGORY%: The filtered category that matched the requested URL (URL) Aggregated data: %PRODUCT%: The product name %EVENT%: The name of the event %SMTPNUMMESSAGES%: The number of messages received via SMTP %SMTPVIRUSDETECTED%: The number of viruses detected (SMTP) 266 McAfee Email and Web Security Appliances 5.6.0 Product Guide