Message Log search options

The Message Log Search Options section includes search options such as date range or keyword, as well as filtering options to search messages by specific criteria, and the functionality to drag columns to resize them. The View from/To calendar controls are used to determine the date and time range for a search. The default value for the from and to fields is the date and time at which the log is opened. The calendar includes the following options:

  • Back and Next arrows display around the month and year at the top of the calendar to change the date.
  • The current date displays in the lower left corner of the calendar; selection sets the calendar to the current date.
  • The Clean option is used to clear the current date/time calendar selection.
  • The entry fields to the right of the calendar are used to set the time range in hours and minutes.

The search filter functionality is used to narrow the search by filtering results by criteria such as Subject, Spam Score, Recipient Address, or Appliance. Up to 10 filters can be added, with a relationship of “and” to further refine the search. The following table details the search filter options.

Option Description
Filter

Pull-down menu functionality to select a message element on which to search:

  • Subject
  • Sender Address
  • Sender IP
  • Recipient Address
  • Analysis Result
  • Message Status
  • To: Header
  • From: Header
  • Spam Score
  • Message Size (KB)
  • Appliance
Condition

Pull-down menu functionality to select a condition for the selected filtering option. The available conditions depend on the selected filter; not all conditions are available for all filters.

Conditions include:

  • Contains
  • Does not contain
  • Equals
  • Does not equal
  • Starts with
  • Does not start with
  • Ends with
  • Does not end with
  • Is
  • Is not
  • Is in this range
Note:

If you select the filter Spam Score and the condition “is” or “is not,” the value of “null” can be input in the Value field.

If you select the filter Sender Address or Recipient Address and the filter “is” or “is not,” multiple addresses can be entered in the Value field, separated by a semicolon.
Value User-defined text field to enter a value for the filter and condition.
Add/Remove Selection adds or removes a row of filtering options to further narrow the search.
Advanced Options

Selection displays additional sort conditions to refine the search:

  • By Direction
    • Inbound
    • Outbound
    • Internal
    • Open Relay
  • By Analysis Result
    • Clean
    • Virus
    • Spam
    • URL Analysis
    • Commercial Bulk
    • Data Loss Prevention
    • Custom Content
    • Exception
    • Block List
    • Advanced Malware Detection - Cloud
    • Phishing
    • Advanced Malware Detection - On-Premises
    • Spoofed Email
    • Email Attachment
    • SMTP Authentication Fail
    • RBL
    • Reputation
    • RDNS
    • SPF
    • DMARC
  • By Message Status
    • Delivered
    • Delayed
    • Dropped
    • Exception
    • Failed
    • Expired
    • Rejected