Deleting logs generated with ip_user_cache on InterScan Web Security Virtual Appliance (IWSVA) server

Product / Version includes:

Interscan Web Security Virtual Appliance 6.5

Last updated: 2025/05/08

Solution ID: KA-0004930

Category: Configure , Troubleshoot

Summary

If you have a NAT or terminal server environment and you enabled ip_user_cache, users use the same IP (the IP of the terminal server), hence, you cannot differentiate the users. However, if you configured IWSVA to be able to differentiate the username by disabling ip_user_cache and enabling cookie mode, you will be able to differentiate the users. In this case, delete the previous logs listed with ip_user_cache enabled since it does not allow you to differentiate the users.

This article describes how to empty logs that you can see under Logs > Log Analysis > Internet Access in IWSVA console.

Click image to enlarge.

To delete the logs:

Log in as "root" in the IWSVA Linux console.
Run this command:
sh /usr/iwss/commonlog/clean.sh

The CommonLog service stops and then restarts.

Click image to enlarge.
Verify if the logs are now empty.

Click image to enlarge.

Was this article helpful?

Featured

Automation Center

Education Portal

Online Help Center

Service Status

TrendConnect

Deleting logs generated with ip_user_cache on InterScan Web Security Virtual Appliance (IWSVA) server

Deleting logs generated with ip_user_cache on InterScan Web Security Virtual Appliance (IWSVA) server

Product / Version includes:

Summary