Azure Monitor中的日志引入 API 允许使用 REST API 调用将外部数据发送到Log Analytics工作区。 本教程逐步讲解如何使用 Azure 门户来配置新的自定义表、数据收集规则(DCR)、数据收集终结点(DCE)和发送日志数据的示例应用程序。
DCR 定义数据格式、要应用的转换和目标表。 DCE 提供应用程序将数据发送到的终结点 URL。 DCR immutableId 的属性是 API 调用中包含的唯一标识符。
注意
本教程使用 Azure 门户将组件配置为支持日志引入 API。 有关使用 Azure 资源管理器 模板配置这些组件的类似教程,请参阅 教程:使用日志引入 API 通过 资源管理器 模板将数据发送到 Azure Monitor。 本教程还包含客户端库.NET、Go、Java、JavaScript 和 Python 的示例代码。
在本教程中,你将了解:
- 注册用于 API 身份验证的Microsoft Entra应用程序
- 创建数据收集终结点以接收数据
- 使用数据收集规则创建自定义表
- 使用 PowerShell 脚本分配权限并发送示例数据
先决条件
要完成本教程,需要:
- 一份 Azure 订阅。 如果没有订阅,请创建一个试用帐户。
- Log Analytics 工作区,你在其中至少拥有参与者权限。
- 在工作区中创建 DCR 对象的权限。
- 在 Microsoft Entra ID 中注册应用程序的权限。
- PowerShell 7.2 或更高版本。
创建 Microsoft Entra 应用程序
注册Microsoft Entra应用程序以针对 API 进行身份验证。 API 支持任何 资源管理器 身份验证方案,但在本教程中,你将遵循 客户端凭据授权流程方案。
在 Azure 门户上的“Microsoft Entra ID”菜单中,选择“应用注册”>“新建注册”。
输入应用程序的名称,如果默认值不适合你的环境,请更改租户范围。 无需提供 重定向 URI。
注册后,查看应用程序详细信息。 记下 应用程序(客户端) ID 和 目录(租户) ID。 在 “生成示例数据 ”步骤中配置 PowerShell 脚本时,请使用这些值。
生成应用程序客户端密码,这类似于创建与用户名配合使用的密码。 选择“证书和密码”“新建客户端密码”>。 输入密钥的名称以标识其用途并选择过期时间。 为本教程选择 1 年 。 对于生产实现,请遵循机密轮换的最佳做法,或使用更安全的身份验证模式,例如证书。
选择添加以保存该机密,然后记下值。 记录此值,因为在离开此页面后无法恢复该值。 将此值视为密码,因为它是功能等效项。
创建数据收集终结点
本教程需要数据收集终结点(DCE),因为Azure门户自定义日志创建向导需要一个。 如果使用Azure 资源管理器部署模板或日志管理 API 创建自定义表和 DCR,则可以改用 DCR 终结点。
DCE 必须与Log Analytics工作区或数据收集规则位于同一区域。 配置 DCE 并将其链接到 DCR 后,应用程序可以通过 HTTP 将数据发送到 DCE 的日志引入 URI。
若要创建新的 DCE,请转到 Azure 门户中的“监视”菜单。 选择“数据收集终结点”,然后选择“创建”。
输入 DCE 的名称,并确保它与工作区位于同一区域。 选择创建以创建 DCE。
创建 DCE 后,选择它以查看其属性。 记下 日志引入 URI。 运行 PowerShell 脚本时,将此 URI 用作
$DceURI参数。
在 Log Analytics 工作区中创建新表
将数据发送到工作区之前,请创建接收数据的自定义表。
注意
不能对日志引入 API 自定义日志使用下表创建过程来创建智能体自定义日志表。 必须使用 CLI 或自定义模板过程来创建表。 如果没有足够的权限来运行 CLI 或自定义模板,请让管理员为你添加表。
转到 Azure 门户中的“Log Analytics 工作区”菜单并选择“表”。 将显示工作区中的表。 选择 “创建”>“新建自定义日志(基于 DCR)”。
输入表的名称。 您无需为自定义表添加
_CL后缀,因为门户会自动将该后缀添加到您指定的名称中。选择“ 创建新数据收集规则 ”以创建向此表发送数据的 DCR。 可选择使用现有的 DCR。 指定包含自定义日志配置的 DCR 的 订阅、 资源组和 名称 。
从下拉菜单中选择创建的 DCE,然后选择“ 下一步”。
分析和筛选示例数据
无需直接配置表的架构,而是通过门户上传包含示例 JSON 数据数组的文件,Azure Monitor自动设置架构。 示例 JSON 文件必须包含一个或多个结构化为数组的日志记录,就像向日志引入 API 发送 HTTP 请求正文中的数据一样。
在继续之前生成
data_sample.json文件。 转到 “生成示例数据”,使用-Type "file"选项运行 PowerShell 脚本,然后返回到此步骤。选择 “浏览文件 ”,找到
data_sample.json所创建的文件。
门户显示来自示例文件的数据,并警告
TimeGenerated不在数据中。 Azure Monitor日志中的所有日志表都需要使用记录事件的时间戳填充TimeGenerated列。 在此示例中,Time字段存储事件时间戳。 您添加了一个用于重命名此列的转换到输出中。选择 转换编辑器 以添加此列。 使用转换编辑器可以为传入数据流创建转换。 此转换是一个针对每条传入记录运行的 Kusto 查询语言 (KQL) 查询。 目标表存储查询结果。 有关转换查询的详细信息,请参阅 Azure Monitor 中的数据集合规则转换。
将以下查询添加到转换编辑器,以将
TimeGenerated列添加到输出中:source | extend TimeGenerated = todatetime(Time)选择“运行”以查看结果。 该
TimeGenerated列现在与其他列一起显示。 不过,该RawData列包含大多数有趣的数据。
将查询修改为以下示例,该查询提取客户端 IP 地址、HTTP 方法、请求的页面地址以及每个日志条目中的响应代码。
source | extend TimeGenerated = todatetime(Time) | parse RawData with ClientIP:string ' ' * ' ' * ' [' * '] "' RequestType:string ' ' Resource:string ' ' * '" ' ResponseCode:int ' ' *选择“运行”以查看结果。 此操作会将
RawData的内容提取到单独的列ClientIP、RequestType、Resource和ResponseCode中。
通过删除
RawData查询和Time列来优化查询,因为不再需要它们。 此外,筛选掉ResponseCode值为 200 的记录,因为您只关心收集失败的请求。 此步骤可减少引入的数据量,从而降低成本。source | extend TimeGenerated = todatetime(Time) | parse RawData with ClientIP:string ' ' * ' ' * ' [' * '] "' RequestType:string ' ' Resource:string ' ' * '" ' ResponseCode:int ' ' * | project-away Time, RawData | where ResponseCode != 200选择“运行”以查看结果。
选择 “应用” 保存转换并查看新表的架构。 选择“下一步”继续 。
验证最终详细信息,然后选择“创建”以保存自定义日志。
收集 DCR 不可变 ID
日志引入 API 调用需要 DCR 的不可变 ID(以 GUID 开头 dcr- 的值)来标识数据收集规则。 从 DCR 的 JSON 视图中收集此值。
在 Azure 门户中的 Monitor 菜单上,选择 Data 集合规则,然后选择创建的 DCR。 从 DCR 的概述中,选择JSON 视图。
复制
immutableId值。
为 DCR 分配权限
将 Monitoring Metrics Publisher 角色分配给 DCR 上的 Microsoft Entra 应用程序。 此角色授予日志引入 API 所需的 Microsoft.Insights/Telemetry/Write 权限。
为该 DCR 选择“访问控制(IAM)”,然后选择“添加角色分配”。
选择“监控指标发布者”>,然后单击“下一步”。 如果不想使用该角色,请改为使用
Microsoft.Insights/Telemetry/Write数据操作创建自定义操作。
选择“用户”、“组”或服务主体以分配对>的访问权限。 选择你创建的应用程序,然后选择“选择”。
在保存角色分配之前,选择“查看 + 分配”并验证详细信息。
Important
最多需要 30 分钟的时间来传播角色分配。 如果在角色分配生效之前发送数据,则会收到 HTTP 403 禁止响应。
生成示例数据
以下 PowerShell 脚本生成示例数据来配置自定义表,并将其发送到日志引入 API 以测试配置。
注意
此示例脚本需要 PowerShell v7.2 或更高版本。
运行以下 PowerShell 命令,该命令为脚本添加所需程序集:
Add-Type -AssemblyName System.Web使用你记下的
$tenantId、$appId以及密码$appSecret来更新 、 和 的值,然后将文件另存为LogGenerator.ps1。param ([Parameter(Mandatory=$true)] $Log, $Type="file", $Output, $DcrImmutableId, $DceURI, $Table) ################ ##### Usage ################ # LogGenerator.ps1 # -Log <String> - Log file to be forwarded # [-Type "file|API"] - Whether the script should generate sample JSON file or send data via # API call. Data will be written to a file by default. # [-Output <String>] - Path to resulting JSON sample # [-DcrImmutableId <string>] - DCR immutable ID # [-DceURI] - Data collection endpoint URI # [-Table] - The name of the custom log table, including "_CL" suffix ##### >>>> PUT YOUR VALUES HERE <<<<< # Information needed to authenticate to Microsoft Entra ID and obtain a bearer token $tenantId = "<put tenant ID here>"; #the tenant ID from the Microsoft Entra app registration $appId = "<put application ID here>"; #the Application (client) ID from the Microsoft Entra app registration $appSecret = "<put secret value here>"; #the client secret value - never store secrets in source code ##### >>>> END <<<<< $file_data = Get-Content $Log if ("file" -eq $Type) { ############ ## Convert plain log to JSON format and output to .json file ############ # If not provided, get output file name if ($null -eq $Output) { $Output = Read-Host "Enter output file name" }; # Form file payload $payload = @(); $records_to_generate = [math]::min($file_data.count, 500) for ($i=0; $i -lt $records_to_generate; $i++) { $log_entry = @{ # Define the structure of log entry, as it will be sent Time = Get-Date ([datetime]::UtcNow) -Format O Application = "LogGenerator" RawData = $file_data[$i] } $payload += $log_entry } # Write resulting payload to file New-Item -Path $Output -ItemType "file" -Value ($payload | ConvertTo-Json -AsArray) -Force } else { ############ ## Send the content to the data collection endpoint ############ if ($null -eq $DcrImmutableId) { $DcrImmutableId = Read-Host "Enter DCR Immutable ID" }; if ($null -eq $DceURI) { $DceURI = Read-Host "Enter data collection endpoint URI" } if ($null -eq $Table) { $Table = Read-Host "Enter the name of custom log table" } ## Obtain a bearer token used to authenticate against the data collection endpoint $scope = [System.Web.HttpUtility]::UrlEncode("https://monitor.azure.cn//.default") $body = "client_id=$appId&scope=$scope&client_secret=$appSecret&grant_type=client_credentials"; $headers = @{"Content-Type" = "application/x-www-form-urlencoded" }; $uri = "https://login.partner.microsoftonline.cn/$tenantId/oauth2/v2.0/token" $bearerToken = (Invoke-RestMethod -Uri $uri -Method "Post" -Body $body -Headers $headers).access_token ## Generate and send some data foreach ($line in $file_data) { # We are going to send log entries one by one with a small delay $log_entry = @{ # Define the structure of log entry, as it will be sent Time = Get-Date ([datetime]::UtcNow) -Format O Application = "LogGenerator" RawData = $line } # Sending the data to Log Analytics via the DCR! $body = $log_entry | ConvertTo-Json -AsArray; $headers = @{"Authorization" = "Bearer $bearerToken"; "Content-Type" = "application/json" }; $uri = "$DceURI/dataCollectionRules/$DcrImmutableId/streams/Custom-$Table"+"?api-version=2023-01-01"; $uploadResponse = Invoke-RestMethod -Uri $uri -Method "Post" -Body $body -Headers $headers; # Let's see how the response looks Write-Output $uploadResponse Write-Output "---------------------" # Pausing for 1 second before processing the next entry Start-Sleep -Seconds 1 } }从 “查看示例数据”复制示例日志数据 或使用自己的 Apache 日志数据。 将其另存为
sample_access.log。运行以下命令来读取文件中的数据,并创建名为
data_sample.json的 JSON 文件:.\LogGenerator.ps1 -Log "sample_access.log" -Type "file" -Output "data_sample.json"
发送示例数据
至少需等待 30 分钟,配置才能生效。 前几个条目也可能会出现更高的延迟,但这种情况应会恢复正常。
使用为 DCR 和 DCE 收集的值运行以下命令。 脚本通过以大约每秒一条记录调用 API 来引入数据。
.\LogGenerator.ps1 -Log "sample_access.log" -Type "API" -Table "ApacheAccess_CL" -DcrImmutableId <immutable ID> -DceUri <data collection endpoint URL>在Log Analytics中,运行以下查询,验证数据是否已正确到达并转换:
ApacheAccess_CL | take 10如果看到包含
ClientIP、RequestType、Resource、ResponseCode和TimeGenerated列的记录,则说明配置正常工作。 如果在 30 分钟后未显示任何数据,请参阅 “排查常见问题”。
排查常见问题
如果数据未显示在自定义日志表中,请检查以下常见问题:
| 症状 | 原因 | 解决方案 |
|---|---|---|
| 发送数据时 HTTP 403 禁止访问 | Microsoft Entra应用程序在 DCR 上没有 Monitoring Metrics Publisher 角色。 | 在 Azure 门户中打开 DCR,转到 访问控制 (IAM),并验证角色分配。 角色更改可能需要长达30分钟才生效。 |
| 在引入终结点上找不到 HTTP 404 | API URI 中的 DCR 不可变 ID 或表名不正确。 | 验证是否$DcrImmutableId与 DCR 的 JSON 视图中的值匹配,并包含$Table_CL后缀。 URI 中的流名称必须是 Custom-<TableName_CL>。 |
| 数据已到达,但列为空或缺失 | 转换 KQL 查询与传入的数据架构不匹配。 | 在门户中打开 DCR,转到转换编辑器,并验证运算符模式是否 parse 与日志条目的格式匹配。 |
有关更多故障排除指南,请参阅示例代码文章的 “故障排除 ”部分。
查看示例数据
使用以下合成样本数据进行本教程。 或者,如果你有自己的 Apache 访问日志,请使用自己的数据。
10.0.144.150 - - [15/Mar/2024:08:00:00 +0000] "POST /pricing HTTP/1.1" 503 588 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
198.51.100.24 - - [15/Mar/2024:08:00:40 +0000] "GET /products/details?id=2087 HTTP/1.1" 200 21854 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
203.0.113.31 - - [15/Mar/2024:08:00:56 +0000] "DELETE /api/v1/health HTTP/1.1" 200 5002 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
198.51.100.58 - - [15/Mar/2024:08:01:36 +0000] "HEAD /docs/getting-started HTTP/2.0" 200 10506 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
203.0.113.107 - - [15/Mar/2024:08:02:04 +0000] "DELETE /css/main.css HTTP/1.1" 500 266 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.187.234 - - [15/Mar/2024:08:02:13 +0000] "GET /dashboard HTTP/1.1" 304 0 "-" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
198.51.100.249 - - [15/Mar/2024:08:02:58 +0000] "HEAD /favicon.ico HTTP/1.1" 200 32197 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
10.0.132.58 - - [15/Mar/2024:08:03:11 +0000] "GET /blog/2024/new-features HTTP/1.1" 200 17354 "https://www.contoso-web.example.com/products" "curl/8.5.0" "-"
198.51.100.203 - - [15/Mar/2024:08:03:16 +0000] "GET /fonts/opensans.woff2 HTTP/1.1" 200 54415 "-" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
10.0.209.6 - - [15/Mar/2024:08:03:40 +0000] "HEAD /api/v1/inventory HTTP/1.1" 200 6523 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
203.0.113.49 - - [15/Mar/2024:08:04:35 +0000] "GET /login HTTP/1.1" 200 33218 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.138 - - [15/Mar/2024:08:04:59 +0000] "POST /download/latest HTTP/2.0" 200 1644 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
10.0.195.154 - - [15/Mar/2024:08:05:09 +0000] "GET /favicon.ico HTTP/1.1" 200 9439 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
203.0.113.110 - - [15/Mar/2024:08:06:24 +0000] "PUT /docs/getting-started HTTP/1.1" 200 18702 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.26.65 - - [15/Mar/2024:08:07:45 +0000] "DELETE /api/v1/status HTTP/1.1" 503 387 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
198.51.100.47 - - [15/Mar/2024:08:09:01 +0000] "GET /admin/reports HTTP/1.1" 200 20411 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
10.0.166.75 - - [15/Mar/2024:08:09:37 +0000] "HEAD /support/tickets HTTP/2.0" 302 6731 "-" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
203.0.113.55 - - [15/Mar/2024:08:09:50 +0000] "GET /about.html HTTP/1.1" 200 11857 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
203.0.113.65 - - [15/Mar/2024:08:10:29 +0000] "PUT /pricing HTTP/1.1" 404 202 "https://www.contoso-web.example.com/" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
198.51.100.88 - - [15/Mar/2024:08:11:06 +0000] "DELETE /images/logo.png HTTP/1.1" 404 286 "-" "axios/1.6.7" "-"
203.0.113.179 - - [15/Mar/2024:08:12:26 +0000] "HEAD /products/details?id=3291 HTTP/1.1" 200 29107 "https://www.contoso-web.example.com/docs/getting-started" "Python-urllib/3.12" "-"
10.0.96.59 - - [15/Mar/2024:08:13:36 +0000] "GET /api/v1/orders HTTP/1.1" 304 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.240.88 - - [15/Mar/2024:08:13:54 +0000] "GET /images/banner.jpg HTTP/1.1" 200 90926 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
198.51.100.36 - - [15/Mar/2024:08:14:21 +0000] "POST /products/details?id=2087 HTTP/1.1" 404 327 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
198.51.100.149 - - [15/Mar/2024:08:15:45 +0000] "HEAD /css/theme.css HTTP/2.0" 200 5724 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
198.51.100.154 - - [15/Mar/2024:08:16:35 +0000] "POST /admin/users HTTP/1.1" 200 23414 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.92 - - [15/Mar/2024:08:16:58 +0000] "GET /index.html HTTP/1.1" 400 352 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.167 - - [15/Mar/2024:08:17:39 +0000] "GET /docs/getting-started HTTP/2.0" 200 13966 "https://www.contoso-web.example.com/products" "axios/1.6.7" "-"
10.0.93.74 - - [15/Mar/2024:08:18:41 +0000] "GET /pricing HTTP/1.1" 400 456 "-" "Python-urllib/3.12" "-"
203.0.113.19 - - [15/Mar/2024:08:19:40 +0000] "GET /images/hero-bg.webp HTTP/2.0" 200 79413 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
203.0.113.165 - - [15/Mar/2024:08:20:57 +0000] "GET /api/v1/users HTTP/1.1" 200 3962 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
198.51.100.13 - - [15/Mar/2024:08:21:51 +0000] "HEAD /products HTTP/1.1" 200 9982 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.80.50 - - [15/Mar/2024:08:23:16 +0000] "GET /api/v1/users HTTP/1.1" 200 2526 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
198.51.100.89 - - [15/Mar/2024:08:24:02 +0000] "GET /sitemap.xml HTTP/1.1" 200 29252 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.236.222 - - [15/Mar/2024:08:24:30 +0000] "GET /api/v1/health HTTP/1.1" 200 608 "https://www.contoso-web.example.com/" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
198.51.100.80 - - [15/Mar/2024:08:25:41 +0000] "GET /products HTTP/1.1" 404 238 "https://www.contoso-web.example.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.210 - - [15/Mar/2024:08:25:56 +0000] "POST /support/kb/1001 HTTP/2.0" 404 284 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
203.0.113.161 - - [15/Mar/2024:08:27:25 +0000] "GET /products HTTP/1.1" 404 183 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
203.0.113.69 - - [15/Mar/2024:08:27:44 +0000] "DELETE /docs/api-reference HTTP/2.0" 404 268 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.93 - - [15/Mar/2024:08:28:35 +0000] "GET /js/analytics.js HTTP/1.1" 500 477 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.105.141 - - [15/Mar/2024:08:29:34 +0000] "GET /download/latest HTTP/1.1" 200 24434 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.162.224 - - [15/Mar/2024:08:30:42 +0000] "GET /js/analytics.js HTTP/1.1" 404 451 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
198.51.100.89 - - [15/Mar/2024:08:32:09 +0000] "GET /blog/2024/performance-tips HTTP/1.1" 404 353 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.49 - - [15/Mar/2024:08:32:59 +0000] "GET /api/v1/orders HTTP/1.1" 200 1305 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
203.0.113.20 - - [15/Mar/2024:08:34:25 +0000] "GET /images/hero-bg.webp HTTP/1.1" 401 532 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
10.0.139.177 - - [15/Mar/2024:08:35:06 +0000] "GET /about.html HTTP/2.0" 200 24876 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
203.0.113.230 - - [15/Mar/2024:08:36:12 +0000] "GET /admin/users HTTP/1.1" 200 6595 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.134 - - [15/Mar/2024:08:36:29 +0000] "HEAD /docs/faq HTTP/1.1" 200 5233 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.14.232 - - [15/Mar/2024:08:37:56 +0000] "PUT /js/app.js HTTP/1.1" 200 10423 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
203.0.113.7 - - [15/Mar/2024:08:37:57 +0000] "PUT /api/v1/orders HTTP/1.1" 200 3931 "https://www.contoso-web.example.com/products" "curl/8.5.0" "-"
10.0.7.17 - - [15/Mar/2024:08:38:48 +0000] "GET /api/v2/search?q=monitor HTTP/2.0" 200 2886 "https://www.contoso-web.example.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.3.75 - - [15/Mar/2024:08:40:17 +0000] "HEAD /docs/faq HTTP/1.1" 200 30166 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.244 - - [15/Mar/2024:08:41:33 +0000] "HEAD /support/kb/2045 HTTP/1.1" 404 510 "https://www.contoso-web.example.com/docs/getting-started" "axios/1.6.7" "-"
10.0.98.177 - - [15/Mar/2024:08:42:23 +0000] "GET /pricing HTTP/1.1" 200 1235 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
198.51.100.112 - - [15/Mar/2024:08:43:30 +0000] "DELETE /css/theme.css HTTP/1.1" 401 439 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
203.0.113.62 - - [15/Mar/2024:08:44:57 +0000] "GET /favicon.ico HTTP/1.1" 200 31785 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.52.35 - - [15/Mar/2024:08:45:35 +0000] "POST /blog/2024/performance-tips HTTP/2.0" 200 6108 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.44 - - [15/Mar/2024:08:46:32 +0000] "POST /login HTTP/1.1" 200 14068 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
203.0.113.248 - - [15/Mar/2024:08:47:16 +0000] "DELETE /images/hero-bg.webp HTTP/1.1" 200 5877 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
198.51.100.199 - - [15/Mar/2024:08:47:47 +0000] "GET / HTTP/1.1" 404 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.122.128 - - [15/Mar/2024:08:48:13 +0000] "GET /api/v1/inventory HTTP/1.1" 200 7935 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.125 - - [15/Mar/2024:08:48:15 +0000] "GET /products/details?id=3291 HTTP/2.0" 304 0 "https://www.contoso-web.example.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.224.122 - - [15/Mar/2024:08:49:21 +0000] "GET /about.html HTTP/1.1" 200 22671 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.136 - - [15/Mar/2024:08:50:06 +0000] "GET /products/details?id=3291 HTTP/1.1" 200 26601 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.52 - - [15/Mar/2024:08:51:16 +0000] "GET /dashboard/settings HTTP/2.0" 401 211 "-" "axios/1.6.7" "-"
10.0.179.107 - - [15/Mar/2024:08:52:32 +0000] "GET /api/v1/inventory HTTP/2.0" 200 5011 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
10.0.77.165 - - [15/Mar/2024:08:52:36 +0000] "PUT /docs/getting-started HTTP/1.1" 200 17459 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.196.168 - - [15/Mar/2024:08:52:54 +0000] "GET /products/details?id=1042 HTTP/1.1" 200 6902 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
203.0.113.67 - - [15/Mar/2024:08:54:15 +0000] "POST /api/v1/inventory HTTP/1.1" 200 5818 "https://www.contoso-web.example.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.75.215 - - [15/Mar/2024:08:55:33 +0000] "GET /api/v1/inventory HTTP/2.0" 401 211 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
198.51.100.177 - - [15/Mar/2024:08:55:53 +0000] "GET /index.html HTTP/2.0" 200 20022 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
198.51.100.5 - - [15/Mar/2024:08:57:16 +0000] "POST /images/hero-bg.webp HTTP/1.1" 200 118872 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
198.51.100.212 - - [15/Mar/2024:08:57:34 +0000] "GET /api/v1/health HTTP/2.0" 304 0 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
203.0.113.172 - - [15/Mar/2024:08:57:37 +0000] "GET /docs/api-reference HTTP/1.1" 200 19005 "https://www.contoso-web.example.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.128.161 - - [15/Mar/2024:08:59:01 +0000] "GET /dashboard HTTP/1.1" 502 479 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.119.212 - - [15/Mar/2024:09:00:11 +0000] "GET /pricing HTTP/2.0" 500 509 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.88.245 - - [15/Mar/2024:09:00:43 +0000] "GET /contact.html HTTP/1.1" 200 24833 "https://www.contoso-web.example.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
10.0.127.189 - - [15/Mar/2024:09:01:47 +0000] "GET /sitemap.xml HTTP/1.1" 200 30554 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.5 - - [15/Mar/2024:09:01:58 +0000] "DELETE /api/v2/search?q=logs HTTP/1.1" 404 224 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
203.0.113.107 - - [15/Mar/2024:09:02:21 +0000] "GET /docs/faq HTTP/2.0" 200 10905 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
203.0.113.241 - - [15/Mar/2024:09:03:06 +0000] "HEAD /favicon.ico HTTP/1.1" 200 2116 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.127 - - [15/Mar/2024:09:04:36 +0000] "HEAD /support/kb/1001 HTTP/2.0" 200 19023 "-" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
198.51.100.37 - - [15/Mar/2024:09:04:56 +0000] "GET /css/main.css HTTP/2.0" 200 14286 "-" "curl/8.5.0" "-"
203.0.113.100 - - [15/Mar/2024:09:05:09 +0000] "GET /dashboard/settings HTTP/1.1" 200 15588 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
10.0.119.46 - - [15/Mar/2024:09:06:05 +0000] "DELETE /fonts/opensans.woff2 HTTP/1.1" 404 456 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
203.0.113.130 - - [15/Mar/2024:09:06:54 +0000] "GET /fonts/opensans.woff2 HTTP/1.1" 401 437 "-" "curl/8.5.0" "-"
10.0.100.13 - - [15/Mar/2024:09:07:22 +0000] "PUT /products/details?id=2087 HTTP/1.1" 200 1326 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.38 - - [15/Mar/2024:09:08:22 +0000] "GET /images/banner.jpg HTTP/1.1" 200 89850 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.57 - - [15/Mar/2024:09:08:57 +0000] "GET /admin/reports HTTP/1.1" 500 333 "-" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.6.147 - - [15/Mar/2024:09:10:00 +0000] "GET /support/kb/2045 HTTP/1.1" 200 18279 "https://www.contoso-web.example.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.86 - - [15/Mar/2024:09:10:09 +0000] "PUT /products/details?id=1042 HTTP/2.0" 401 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.16 - - [15/Mar/2024:09:11:03 +0000] "PUT /favicon.ico HTTP/1.1" 304 0 "https://www.contoso-web.example.com/" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
198.51.100.35 - - [15/Mar/2024:09:12:16 +0000] "PUT /images/banner.jpg HTTP/1.1" 200 74710 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
198.51.100.22 - - [15/Mar/2024:09:12:38 +0000] "GET /dashboard HTTP/1.1" 200 7065 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
10.0.112.6 - - [15/Mar/2024:09:14:00 +0000] "PUT /download/latest HTTP/1.1" 200 14596 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
203.0.113.182 - - [15/Mar/2024:09:15:02 +0000] "HEAD /dashboard HTTP/1.1" 200 23295 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.246.120 - - [15/Mar/2024:09:16:15 +0000] "PUT /api/v1/status HTTP/1.1" 200 1859 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
203.0.113.163 - - [15/Mar/2024:09:16:44 +0000] "GET /images/logo.png HTTP/1.1" 200 20968 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
10.0.154.169 - - [15/Mar/2024:09:17:04 +0000] "GET /css/theme.css HTTP/1.1" 200 20486 "https://search.contoso.example.com/results?q=monitor+logs" "curl/8.5.0" "-"
203.0.113.70 - - [15/Mar/2024:09:17:21 +0000] "PUT /css/main.css HTTP/2.0" 200 11344 "https://www.contoso-web.example.com/" "curl/8.5.0" "-"
10.0.70.200 - - [15/Mar/2024:09:18:03 +0000] "GET /admin/users HTTP/2.0" 200 6236 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.4 - - [15/Mar/2024:09:19:18 +0000] "DELETE /api/v2/search?q=logs HTTP/1.1" 200 7477 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.65 - - [15/Mar/2024:09:19:32 +0000] "GET /products/details?id=1042 HTTP/1.1" 200 13081 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
203.0.113.204 - - [15/Mar/2024:09:20:52 +0000] "DELETE /about.html HTTP/1.1" 200 27612 "-" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
203.0.113.81 - - [15/Mar/2024:09:21:05 +0000] "GET / HTTP/1.1" 403 416 "https://www.contoso-web.example.com/" "axios/1.6.7" "-"
10.0.251.72 - - [15/Mar/2024:09:22:34 +0000] "GET /about.html HTTP/1.1" 200 5059 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.78 - - [15/Mar/2024:09:22:55 +0000] "PUT /css/theme.css HTTP/1.1" 302 43869 "https://www.contoso-web.example.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
203.0.113.237 - - [15/Mar/2024:09:23:09 +0000] "DELETE /about.html HTTP/1.1" 404 330 "-" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
10.0.178.63 - - [15/Mar/2024:09:23:31 +0000] "PUT /pricing HTTP/1.1" 200 3517 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.94 - - [15/Mar/2024:09:23:38 +0000] "GET /css/main.css HTTP/1.1" 200 10624 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.160 - - [15/Mar/2024:09:24:17 +0000] "HEAD /api/v1/orders HTTP/1.1" 200 4928 "-" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
203.0.113.95 - - [15/Mar/2024:09:24:32 +0000] "PUT /dashboard HTTP/1.1" 304 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.105 - - [15/Mar/2024:09:24:54 +0000] "GET /about.html HTTP/1.1" 200 29644 "https://www.contoso-web.example.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
10.0.155.45 - - [15/Mar/2024:09:24:57 +0000] "GET /docs/api-reference HTTP/1.1" 200 23496 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
198.51.100.134 - - [15/Mar/2024:09:25:12 +0000] "PUT /support/kb/1001 HTTP/1.1" 200 23411 "https://www.contoso-web.example.com/docs/getting-started" "curl/8.5.0" "-"
203.0.113.123 - - [15/Mar/2024:09:25:16 +0000] "DELETE /docs/getting-started HTTP/1.1" 200 33721 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.40 - - [15/Mar/2024:09:25:53 +0000] "HEAD /support/kb/2045 HTTP/1.1" 302 6724 "https://www.contoso-web.example.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
198.51.100.237 - - [15/Mar/2024:09:26:46 +0000] "GET /contact.html HTTP/1.1" 200 26385 "https://www.contoso-web.example.com/products" "axios/1.6.7" "-"
203.0.113.250 - - [15/Mar/2024:09:27:10 +0000] "PUT /sitemap.xml HTTP/1.1" 200 3261 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.146.130 - - [15/Mar/2024:09:27:43 +0000] "GET /login HTTP/2.0" 403 154 "https://www.contoso-web.example.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
10.0.85.245 - - [15/Mar/2024:09:28:59 +0000] "PUT /admin/users HTTP/1.1" 200 24276 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
10.0.234.28 - - [15/Mar/2024:09:29:59 +0000] "POST /css/main.css HTTP/2.0" 200 4532 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.112 - - [15/Mar/2024:09:31:21 +0000] "GET /products HTTP/1.1" 404 325 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.105 - - [15/Mar/2024:09:32:08 +0000] "POST /blog/2024/performance-tips HTTP/1.1" 200 6005 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.243 - - [15/Mar/2024:09:33:24 +0000] "HEAD /products/details?id=1042 HTTP/1.1" 200 31460 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
203.0.113.73 - - [15/Mar/2024:09:33:55 +0000] "POST /products HTTP/1.1" 200 13432 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.146.116 - - [15/Mar/2024:09:34:54 +0000] "GET /contact.html HTTP/1.1" 200 32849 "https://www.contoso-web.example.com/docs/getting-started" "curl/8.5.0" "-"
198.51.100.114 - - [15/Mar/2024:09:36:16 +0000] "POST /api/v1/inventory HTTP/1.1" 200 2408 "https://www.contoso-web.example.com/products" "curl/8.5.0" "-"
10.0.143.180 - - [15/Mar/2024:09:37:31 +0000] "POST /docs/getting-started HTTP/1.1" 200 6891 "https://search.contoso.example.com/results?q=monitor+logs" "Python-urllib/3.12" "-"
203.0.113.22 - - [15/Mar/2024:09:38:52 +0000] "PUT /api/v1/users HTTP/1.1" 401 202 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
203.0.113.235 - - [15/Mar/2024:09:39:00 +0000] "GET /blog/2024/performance-tips HTTP/1.1" 404 336 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.35.68 - - [15/Mar/2024:09:39:17 +0000] "POST /download/latest HTTP/1.1" 200 28141 "-" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
10.0.245.37 - - [15/Mar/2024:09:40:46 +0000] "PUT /docs/api-reference HTTP/1.1" 304 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.94 - - [15/Mar/2024:09:41:26 +0000] "DELETE /contact.html HTTP/1.1" 200 7501 "https://www.contoso-web.example.com/" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
10.0.72.57 - - [15/Mar/2024:09:42:45 +0000] "PUT /js/analytics.js HTTP/1.1" 404 331 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
10.0.148.74 - - [15/Mar/2024:09:43:56 +0000] "GET /api/v1/orders HTTP/2.0" 200 2906 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.66 - - [15/Mar/2024:09:45:02 +0000] "GET /dashboard HTTP/1.1" 403 419 "-" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.59 - - [15/Mar/2024:09:45:47 +0000] "GET /products/catalog HTTP/1.1" 200 12346 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
198.51.100.244 - - [15/Mar/2024:09:45:56 +0000] "GET /images/logo.png HTTP/1.1" 200 27223 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.218 - - [15/Mar/2024:09:46:55 +0000] "HEAD /support/kb/2045 HTTP/1.1" 200 2283 "https://portal.contoso.example.com/dashboard" "Python-urllib/3.12" "-"
203.0.113.156 - - [15/Mar/2024:09:47:42 +0000] "GET /api/v2/search?q=logs HTTP/2.0" 404 432 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
203.0.113.220 - - [15/Mar/2024:09:49:01 +0000] "GET /api/v2/search?q=logs HTTP/2.0" 502 549 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
10.0.171.103 - - [15/Mar/2024:09:49:27 +0000] "DELETE /support/kb/2045 HTTP/2.0" 200 22105 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
198.51.100.105 - - [15/Mar/2024:09:50:21 +0000] "GET / HTTP/2.0" 200 34208 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
203.0.113.2 - - [15/Mar/2024:09:51:12 +0000] "GET /support/kb/2045 HTTP/2.0" 304 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.61 - - [15/Mar/2024:09:51:55 +0000] "PUT /download/latest HTTP/1.1" 200 29957 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.42 - - [15/Mar/2024:09:52:12 +0000] "GET /docs/api-reference HTTP/1.1" 404 234 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.203 - - [15/Mar/2024:09:52:33 +0000] "DELETE /api/v1/orders HTTP/1.1" 404 444 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.64 - - [15/Mar/2024:09:53:07 +0000] "PUT /products/details?id=2087 HTTP/2.0" 200 26159 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
203.0.113.58 - - [15/Mar/2024:09:53:29 +0000] "GET /css/theme.css HTTP/2.0" 200 14059 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
198.51.100.11 - - [15/Mar/2024:09:54:34 +0000] "GET /api/v1/health HTTP/1.1" 200 6491 "https://search.contoso.example.com/results?q=monitor+logs" "Python-urllib/3.12" "-"
203.0.113.182 - - [15/Mar/2024:09:55:27 +0000] "GET /products/catalog HTTP/1.1" 200 31011 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.162.84 - - [15/Mar/2024:09:55:30 +0000] "GET /products/catalog HTTP/2.0" 200 14183 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
10.0.42.30 - - [15/Mar/2024:09:56:22 +0000] "GET /docs/getting-started HTTP/2.0" 304 0 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.183 - - [15/Mar/2024:09:57:25 +0000] "GET /dashboard/settings HTTP/1.1" 200 27116 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
10.0.238.85 - - [15/Mar/2024:09:58:43 +0000] "DELETE /blog/2024/performance-tips HTTP/1.1" 200 6665 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.83.38 - - [15/Mar/2024:09:59:03 +0000] "GET /docs/getting-started HTTP/1.1" 301 28536 "https://portal.contoso.example.com/dashboard" "curl/8.5.0" "-"
198.51.100.138 - - [15/Mar/2024:09:59:29 +0000] "GET /fonts/opensans.woff2 HTTP/1.1" 304 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.169 - - [15/Mar/2024:09:59:34 +0000] "GET /pricing HTTP/2.0" 200 20414 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
10.0.149.235 - - [15/Mar/2024:09:59:43 +0000] "DELETE /products/catalog HTTP/1.1" 200 7249 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.17 - - [15/Mar/2024:10:00:52 +0000] "HEAD /api/v2/search?q=monitor HTTP/2.0" 200 1409 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
198.51.100.162 - - [15/Mar/2024:10:02:03 +0000] "GET /admin/reports HTTP/1.1" 200 25674 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
198.51.100.196 - - [15/Mar/2024:10:02:41 +0000] "POST /login HTTP/1.1" 500 158 "https://portal.contoso.example.com/dashboard" "curl/8.5.0" "-"
10.0.51.98 - - [15/Mar/2024:10:03:45 +0000] "PUT /api/v1/users HTTP/1.1" 200 2403 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.139.98 - - [15/Mar/2024:10:05:02 +0000] "PUT /docs/faq HTTP/1.1" 304 0 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
10.0.230.52 - - [15/Mar/2024:10:05:45 +0000] "GET /dashboard HTTP/1.1" 200 14400 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.98.86 - - [15/Mar/2024:10:05:56 +0000] "GET /pricing HTTP/1.1" 200 5881 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
203.0.113.125 - - [15/Mar/2024:10:06:58 +0000] "GET /docs/faq HTTP/2.0" 200 15606 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
10.0.120.68 - - [15/Mar/2024:10:07:23 +0000] "GET /api/v1/status HTTP/1.1" 200 2180 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.115 - - [15/Mar/2024:10:07:47 +0000] "GET /dashboard/settings HTTP/1.1" 200 33326 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.126.159 - - [15/Mar/2024:10:09:17 +0000] "GET /js/analytics.js HTTP/1.1" 403 212 "-" "Python-urllib/3.12" "-"
203.0.113.71 - - [15/Mar/2024:10:09:39 +0000] "GET /js/analytics.js HTTP/1.1" 200 14377 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.166 - - [15/Mar/2024:10:10:34 +0000] "GET /products/catalog HTTP/1.1" 304 0 "https://www.contoso-web.example.com/" "curl/8.5.0" "-"
198.51.100.210 - - [15/Mar/2024:10:12:03 +0000] "DELETE /support/tickets HTTP/2.0" 200 28291 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.103 - - [15/Mar/2024:10:13:03 +0000] "GET /robots.txt HTTP/1.1" 200 19145 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
10.0.29.154 - - [15/Mar/2024:10:13:53 +0000] "GET /js/analytics.js HTTP/1.1" 200 11324 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
198.51.100.22 - - [15/Mar/2024:10:14:25 +0000] "PUT /docs/api-reference HTTP/1.1" 200 2416 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
203.0.113.36 - - [15/Mar/2024:10:15:01 +0000] "PUT /css/theme.css HTTP/2.0" 200 42635 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.185 - - [15/Mar/2024:10:15:23 +0000] "GET /robots.txt HTTP/1.1" 200 6896 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.92.206 - - [15/Mar/2024:10:15:50 +0000] "PUT /products HTTP/1.1" 404 230 "-" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
198.51.100.200 - - [15/Mar/2024:10:16:07 +0000] "POST /products HTTP/1.1" 401 266 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.235.2 - - [15/Mar/2024:10:16:21 +0000] "GET /products/catalog HTTP/2.0" 403 398 "-" "axios/1.6.7" "-"
198.51.100.33 - - [15/Mar/2024:10:17:25 +0000] "GET /robots.txt HTTP/2.0" 200 7803 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
10.0.253.189 - - [15/Mar/2024:10:17:59 +0000] "GET /robots.txt HTTP/1.1" 404 393 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.3 - - [15/Mar/2024:10:19:09 +0000] "GET /api/v1/inventory HTTP/1.1" 200 7035 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
198.51.100.108 - - [15/Mar/2024:10:19:22 +0000] "POST /images/banner.jpg HTTP/1.1" 200 119730 "https://www.contoso-web.example.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.130.134 - - [15/Mar/2024:10:19:25 +0000] "GET /js/app.js HTTP/1.1" 401 246 "https://www.contoso-web.example.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
203.0.113.213 - - [15/Mar/2024:10:20:29 +0000] "PUT /login HTTP/1.1" 200 7016 "-" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
198.51.100.171 - - [15/Mar/2024:10:20:46 +0000] "PUT /admin/reports HTTP/2.0" 200 9250 "https://portal.contoso.example.com/dashboard" "Python-urllib/3.12" "-"
10.0.204.237 - - [15/Mar/2024:10:21:59 +0000] "HEAD /js/analytics.js HTTP/2.0" 200 8118 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
203.0.113.185 - - [15/Mar/2024:10:23:08 +0000] "GET /admin/reports HTTP/1.1" 302 16466 "https://www.contoso-web.example.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.207.154 - - [15/Mar/2024:10:24:07 +0000] "DELETE /support/kb/2045 HTTP/1.1" 200 23028 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.35 - - [15/Mar/2024:10:24:15 +0000] "DELETE /api/v1/health HTTP/2.0" 200 2452 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
198.51.100.177 - - [15/Mar/2024:10:25:45 +0000] "HEAD /api/v1/orders HTTP/1.1" 401 309 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.70.137 - - [15/Mar/2024:10:25:47 +0000] "GET /about.html HTTP/1.1" 200 28630 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
10.0.95.70 - - [15/Mar/2024:10:26:32 +0000] "GET /api/v2/search?q=logs HTTP/1.1" 200 720 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.86 - - [15/Mar/2024:10:27:46 +0000] "GET /js/app.js HTTP/1.1" 200 2753 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
203.0.113.201 - - [15/Mar/2024:10:29:04 +0000] "DELETE /support/tickets HTTP/1.1" 401 403 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
10.0.231.94 - - [15/Mar/2024:10:29:05 +0000] "POST /sitemap.xml HTTP/2.0" 200 20531 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
203.0.113.176 - - [15/Mar/2024:10:29:28 +0000] "GET /products/details?id=3291 HTTP/1.1" 200 29593 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
清理资源
如果不再需要在本教程中创建的资源,请将其删除以避免成本。 删除包含 DCE、DCR 和Log Analytics工作区的资源组。 如果只为本教程注册了Microsoft Entra应用程序,请从 Azure 门户中的 应用注册 页中删除应用注册。