Configuring Full Traffic Logging

Administrators using Forcepoint Web Security Cloud have the option to download full web traffic logs for retention and analysis.

At this time, the full traffic logging feature is a limited availability feature. Contact Forcepoint Technical Support to enable the feature for your organization.

Once you have enabled traffic logging in the Forcepoint Cloud Security Gateway Portal, also known as the cloud portal, you can schedule a regular process to download the logs and save them to a location of your choice. Logs are retained in the cloud service for 14 days.

Important: Full traffic logging is an add-on for Forcepoint Web Security Cloud, and is separate from standard web reporting. Standard reporting data is retained for 90 days and can be accessed through standard and custom reports; full traffic logs, once enabled, are retained for 14 days and are accessible through download only.

Once the feature has been enabled for your account, follow the steps in this paper to set up and use full traffic logging. See:

Setting up full logging provides step-by-step instructions for setting up full traffic logging in the cloud portal, accessing the log files, and understanding the sample download script.
Downloading log files describes the issues you must be aware of when downloading the logs, and how to schedule the download process.
File format definition for full traffic logging describes the contents of a log file, with examples.

If you encounter unexpected issues while setting up full traffic logging, see Troubleshooting full traffic logging.