logger
Outputs the logs collected by the collector in real time for a specified amount of time. Administrative privileges are required to execute this command.
Syntax
Required Parameter
window=INT{y|mon|w|d|h|m|s}
-
Period of time for which to receive data in real time from the time the query is executed. You can specify the time in units of
y
(year),mon
(month),w
(week),d
(day),h
(hour),m
(minute), ands
(second). For example,10s
refers to "the next 10 seconds" from the time the query is executed. NAMESPACE\LOGGER[, ...]
-
Logical path to the log collector that receives data in real time. Use comma (
,
) as a separator to specify multiple log collectors. Using a wildcard (*
) inLOGGER
, you can receive logs from all log collectors containing specific string patterns in the name at once. -
You can see the
NAMESPACE
in the web interface.- (ENT, STD) You can see it on the Device column under LOG SOURCE > All.
- (SNR) You can see it in the local or on the Identifier under System > Sentry management > Sentry list.
-
You can see the name of the
LOGGER
in the web interface.- (ENT, STD) You can see it in the Name column under LOG SOURCE > All.
Usage
Receive logs for 10 seconds from local\sample1
and local\sample2
log collectors.
logger window=10s local\sample1, local\sample2