Document toolboxDocument toolbox

Endpoint System Level Logging

Owned by Gary Leicht
Last updated: Sept 06, 2024
1 min read

Endpoint system-level logs are used by network and security administrators to analyze Infoblox Endpoint query/response logs and to troubleshoot issues in Infoblox Endpoint. The log level can be set for specific endpoints or endpoint groups.

Audit Logs: The uploading of audit log data is not available to customers. Please reach out to Infoblox support with requests for audit log information. Once the information becomes available, Infoblox support will provide you with the information.

Inactive Endpoints: The option to upload support logs for inactive endpoints is not available. An endpoint must be active or disabled in order to upload support log information.

Available log information includes the following:

  • Container download, upgrade, restart events, and errors

  • Infoblox Endpoint connection status: connected, disconnected, and connection error (with an accompanying explanation)

  • Configuration change events

  • DNS query and response logs:

    • The default log level for Infoblox Endpoint is set to limit the number of events generated and reported.

    • A log level can be increased when an incident is triggered and an investigation of the incident ensues.

    • After the termination of an investigation, the logging level can be reduced to the default monitoring level.

    • Log level can be adjusted through the Infoblox Portal or through the API.

    • The log level status for an endpoint can be viewed in the information panel, and optionally, through the table view.

 

 

Â