This section describes how to view the logs NetMon generates in real time. By viewing log data, you can verify that certain processing components are working.
- Open the NetMon Web Management interface.
- On the top navigation bar, click Logs.
Click one of the log tabs.If you want to clear the data in the screen, click the Reset button.
The following table describes the logs. All data is shown in real time.
Log Data Description
Displays a log for NetMon's packet-processing component (the Engine), which collects and reads the network traffic and processes it.
Displays a log for the component that sends data through the Rule Engine threads.
Displays a log for NetMon's component that manages other services, such as the Engine and the Logger.
Displays a log for the component that indexes metadata in Elasticsearch.
Displays a log for the process which tests for alarm conditions using the Elasticsearch percolate function.
Displays the raw log output of NetMon's database.
Displays the log for the process used to generate statistical data for NetMon's Diagnostics page.
Displays the log for the process used to maintain NetMon's Elasticsearch indices.
Displays the log for the process that maintains the license state of the NetMon distribution.
Displays an error log for NetMon's web server component.
Displays a log for user activity by IP address. This log activity constantly refreshes.
Displays an activity log for the metadata storage engine.
Displays a log of Deep Packet Analytics Rules that have run at the flow level.
Displays a log of Deep Packet Analytics Rules that have run at the packet level.
Displays event and diagnostic logs for NetMon. For more information, see Diagnostic Messages.
Displays log messages related to file extraction in NetMon.