Using Logs and Reports : Configuring log purge settings
 
Configuring log purge settings
Log purging is the deleting of logs to preserve log space and maintain log system performance.
By default, DDoS attack event logs are purged on a first-in, first-out basis when the log reaches 1,000,000 entries. Log purge settings are configurable. You can specify a different threshold, and you can purge logs manually.
Before you begin:
You must have Read-Write permission for Log & Report settings.
To configure purge settings:
1. Go to Log & Report > Log Configuration > Purge Settings.
2. Complete the configuration as described in Table 61.
3. Save the configuration.
Figure 95: Log purge settings configuration page
 
Table 61: Log purge settings configuration guidelines
Settings
Guidelines
Automatic
Select to automatically purge logs after the max number of entries is reached.
Max number of events
Purge the earliest events from the attack log when this threshold is reached. The default is 1,000,000 entries. The valid range is 1,000,000 - 10,000,000.
Manual
Select to purge entries logged during the specified period.
Start Date / End Date
Specify a period when purging logs manually. The period begins at 0:00 on the start date and ends at 23:59 on the end date.
 
 
CLI commands:
config ddos global attack-event-purge
[set automatic-event-purge {enable | disable}]
[set purge-watermark <watermark_int>]
[set manual-event-purge {enable | disable}]
[set purge-start-date <purge_date_str>]
[set purge-end-date <purge_date_str>]
end