Esercitazione: Inviare dati ai log di Monitoraggio di Azure usando l'API di inserimento log (portale di Azure)

L'API di inserimento log in Monitoraggio di Azure consente di inviare dati esterni a un'area di lavoro Log Analytics usando una chiamata API REST. Questa esercitazione illustra come usare il portale di Azure per configurare una nuova tabella personalizzata, una regola di raccolta dati (DCR), un endpoint di raccolta dati (DCE) e un'applicazione di esempio che invia i dati di log.

Un DCR definisce il formato dei dati, la trasformazione da applicare e la tabella di destinazione. Un controller di dominio fornisce l'URL dell'endpoint a cui l'applicazione invia i dati. La proprietà immutableId del DCR è l'identificatore univoco che includi nella chiamata API.

In questa esercitazione, imparerai a:

Prerequisiti

Per completare questa esercitazione è necessario:

• Una sottoscrizione di Azure. Se non ne hai uno, crea un account gratuito.
• Un'area di lavoro Log Analytics in cui si dispone almeno dei diritti di collaboratore.
• Autorizzazioni per creare oggetti DCR nell'area di lavoro.
• Autorizzazioni per registrare un'applicazione in Microsoft Entra ID.
• PowerShell 7.2 o versione successiva.

Creare un'applicazione Microsoft Entra

Registrare un'applicazione Microsoft Entra per l'autenticazione con l'API. L'API supporta qualsiasi schema di autenticazione Resource Manager, ma in questa esercitazione si seguirà lo schema Client Credential Grant Flow.

1. Nel menu Microsoft Entra ID nel portale di Azure selezionare Registrazioni app> Nuova registrazione.

   

2. Immettere un nome per l'applicazione e modificare l'ambito della tenancy se quello predefinito non è adatto all'ambiente. Non è necessario fornire un URI di reindirizzamento.

   

3. Dopo la registrazione, visualizzare i dettagli dell'applicazione. Prendere nota dei valori ID applicazione (client) e ID directory (tenant). Questi valori vengono usati quando si configura lo script di PowerShell nel passaggio Genera dati di esempio .

   

4. Generare un segreto client dell'applicazione, simile alla creazione di una password da usare con un nome utente. Selezionare Certificati e segreti>Nuovo segreto client. Immettere un nome per il segreto così da identificarne lo scopo e selezionare una durata di scadenza. Selezionare 1 anno per questa esercitazione. Per un'implementazione di produzione, seguire le procedure consigliate per la rotazione dei segreti o usare una modalità di autenticazione più sicura, ad esempio un certificato.

   

5. Selezionare Aggiungi per salvare il segreto e quindi prendere nota del Valore. Registrare questo valore perché non è possibile recuperarlo dopo lo spostamento da questa pagina. Considera questo valore come una password perché è l'equivalente funzionale.

   

Crea endpoint di raccolta dati

Per questa esercitazione è necessario un endpoint di raccolta dati (DCE) perché la creazione guidata log personalizzata del portale Azure ne richiede una. Se si usano Azure Resource Manager modelli di distribuzione o l'API di gestione dei log per creare invece la tabella personalizzata e il DCR, è possibile usare l'endpoint DCR.

L'endpoint di raccolta dati deve trovarsi nella stessa area dell'area di lavoro di Log Analytics o nella regola di raccolta di dati. Dopo aver configurato e collegato dce a un controller di dominio, l'applicazione può inviare dati tramite HTTP all'URI di inserimento dei log di DCE.

1. Per creare un nuovo DCE, passare al menu Monitor nel portale di Azure. Selezionare Endpoint raccolta dati e quindi Crea.

   

2. Immettere un nome per il DCE e assicurarsi che sia nella stessa regione del proprio spazio di lavoro. Selezionare Crea per creare la DCE.

   

3. Dopo aver creato il DCE, selezionarlo per visualizzarne le proprietà. Prendere nota dell'URI di inserimento dei log . Usare questo URI come $DceURI parametro quando si esegue lo script di PowerShell.

   

Creare la nuova tabella nell'area di lavoro di Log Analytics

Prima di inviare dati all'area di lavoro, creare la tabella personalizzata che riceve i dati.

1. Andare al menu Aree di lavoro di Log Analytics del portale di Azure e selezionare Tabelle. Vengono visualizzate le tabelle nell'area di lavoro. Selezionare Crea>Nuovo log personalizzato (basato su DCR).

   

2. Immettere un nome per la tabella. Non è necessario aggiungere il _CL suffisso necessario per una tabella personalizzata perché il portale lo aggiunge automaticamente al nome specificato.

3. Selezionare Crea una nuova regola di raccolta dati per creare la DCR che invia i dati a questa tabella. Opzionalmente, scegliere invece un DCR esistente. Specificare la sottoscrizione, il gruppo di risorse e il nome per il registro di dominio che contiene la configurazione del log personalizzata.

   

4. Dal menu a discesa selezionare un DCE che hai creato e quindi selezionare Avanti.

   

Analizzare e filtrare i dati di esempio

Anziché configurare direttamente lo schema della tabella, caricare un file con una matrice JSON di dati di esempio tramite il portale e Monitoraggio di Azure imposta automaticamente lo schema. Il file JSON di esempio deve contenere uno o più record di log strutturati come matrice, allo stesso modo in cui si inviano dati nel corpo di una richiesta HTTP all'API di inserimento dei log.

1. Generare il data_sample.json file prima di continuare. Passare a Genera dati di esempio, eseguire lo script di PowerShell con l'opzione -Type "file" e quindi tornare a questo passaggio.

2. Selezionare Sfoglia file e individuare il data_sample.json file creato.

   

3. Il portale visualizza i dati del file di esempio con un avviso che TimeGenerated non si trova nei dati. Tutte le tabelle di log nei log di Monitoraggio di Azure richiedono una colonna TimeGenerated popolata con il timestamp dell'evento registrato. In questo esempio, il campo Time memorizza il timestamp dell'evento. Aggiungi una trasformazione che rinomina questa colonna nell'output.

4. Seleziona Transformation Editor per aggiungere questa colonna. L'editor di trasformazione consente di creare una trasformazione per il flusso di dati in ingresso. Questa trasformazione è una query KQL (Linguaggio di query Kusto) che viene eseguita su ogni record in ingresso. La tabella di destinazione archivia i risultati della query. Per altre informazioni sulle query di trasformazione, vedere Data collection rule transformations in Monitoraggio di Azure.

   

5. Aggiungere la seguente query nell'editor di trasformazione per inserire la colonna TimeGenerated nell'output:

   source
   | extend TimeGenerated = todatetime(Time)
   

6. Selezionare Esegui per visualizzare i risultati. La TimeGenerated colonna viene ora visualizzata con le altre colonne. La RawData colonna contiene tuttavia la maggior parte dei dati interessanti.

   

7. Modificare la query nell'esempio seguente, che estrae l'indirizzo IP del client, il metodo HTTP, l'indirizzo di pagina richiesto e il codice di risposta da ogni voce di log.

   source
   | extend TimeGenerated = todatetime(Time)
   | parse RawData with 
   ClientIP:string
   ' ' *
   ' ' *
   ' [' * '] "' RequestType:string
   ' ' Resource:string
   ' ' *
   '" ' ResponseCode:int
   ' ' *
   

8. Selezionare Esegui per visualizzare i risultati. Questa azione estrae il contenuto di RawData nelle colonne separate ClientIP, RequestType, Resource e ResponseCode.

   

9. Ottimizzare più la query rimuovendo le RawData colonne e Time perché non sono più necessarie. Filtra anche i record con valore ResponseCode pari a 200, dato che sei interessato solo alla raccolta di richieste non riuscite. Questo passaggio riduce il volume di dati inseriti, riducendo così i costi.

   source
   | extend TimeGenerated = todatetime(Time)
   | parse RawData with 
   ClientIP:string
   ' ' *
   ' ' *
   ' [' * '] "' RequestType:string
   ' ' Resource:string
   ' ' *
   '" ' ResponseCode:int
   ' ' *
   | project-away Time, RawData
   | where ResponseCode != 200
   

10. Selezionare Esegui per visualizzare i risultati.

    

11. Selezionare Applica per salvare la trasformazione e visualizzare lo schema della nuova tabella. Selezionare Avanti per continuare.

    

12. Verificare i dettagli finali e selezionare Crea per salvare il log personalizzato.

    

Raccogliere l'ID non modificabile del DCR

Per identificare la regola di raccolta dati, la chiamata all'API di inserimento dei log richiede l'ID non modificabile di DCR (un valore che inizia con dcr- seguito da un GUID). Raccogliere questo valore dalla visualizzazione JSON di DCR.

1. Nel menu Monitor nel portale di Azure selezionare Data collection rules e quindi selezionare il DCR creato. In Panoramica per DCR selezionare Vista JSON.

   

2. Copiare il valore immutableId.

   

Assegnare le autorizzazioni alla DCR

Assegnare il ruolo Monitoring Metrics Publisher all'applicazione Microsoft Entra sul DCR. Questo ruolo concede l'autorizzazione Microsoft.Insights/Telemetry/Write richiesta dall'API di inserimento log.

1. Selezionare Controllo di accesso (IAM) per la DCR e quindi Aggiungi assegnazione di ruolo.

   

2. Selezionare Publisher di metriche di monitoraggio>Avanti. Se non si desidera usare tale ruolo, creare invece un'azione personalizzata con l'azione dati Microsoft.Insights/Telemetry/Write.

   

3. Selezionare Utente, gruppo o entità servizio per Assegna accesso a>Seleziona membri. Selezionare l'applicazione creata e quindi scegliere Seleziona.

   

4. Selezionare Rivedi + assegna e verificare i dettagli prima di salvare l'assegnazione di ruolo.

   

Generare dati di esempio

Lo script di PowerShell seguente genera dati di esempio per configurare la tabella personalizzata e li invia all'API di inserimento dei log per testare la configurazione.

1. Eseguire il comando di PowerShell seguente, che aggiunge un assembly necessario per lo script:

   Add-Type -AssemblyName System.Web
   

2. Aggiornare $tenantId, $appId e $appSecret con i valori annotati per ID directory (tenant),ID applicazione (client) e valore segreto, quindi salvare il file come LogGenerator.ps1.

   param ([Parameter(Mandatory=$true)] $Log, $Type="file", $Output, $DcrImmutableId, $DceURI, $Table)
   ################
   ##### Usage
   ################
   # LogGenerator.ps1
   #   -Log <String>              - Log file to be forwarded
   #   [-Type "file|API"]         - Whether the script should generate sample JSON file or send data via
   #                                API call. Data will be written to a file by default.
   #   [-Output <String>]         - Path to resulting JSON sample
   #   [-DcrImmutableId <string>] - DCR immutable ID
   #   [-DceURI]                  - Data collection endpoint URI
   #   [-Table]                   - The name of the custom log table, including "_CL" suffix
   
   
   ##### >>>> PUT YOUR VALUES HERE <<<<<
   # Information needed to authenticate to Microsoft Entra ID and obtain a bearer token
   $tenantId = "<put tenant ID here>"; #the tenant ID from the Microsoft Entra app registration
   $appId = "<put application ID here>"; #the Application (client) ID from the Microsoft Entra app registration
   $appSecret = "<put secret value here>"; #the client secret value - never store secrets in source code
   ##### >>>> END <<<<<
   
   
   $file_data = Get-Content $Log
   if ("file" -eq $Type) {
       ############
       ## Convert plain log to JSON format and output to .json file
       ############
       # If not provided, get output file name
       if ($null -eq $Output) {
           $Output = Read-Host "Enter output file name" 
       };
   
       # Form file payload
       $payload = @();
       $records_to_generate = [math]::min($file_data.count, 500)
       for ($i=0; $i -lt $records_to_generate; $i++) {
           $log_entry = @{
               # Define the structure of log entry, as it will be sent
               Time = Get-Date ([datetime]::UtcNow) -Format O
               Application = "LogGenerator"
               RawData = $file_data[$i]
           }
           $payload += $log_entry
       }
       # Write resulting payload to file
       New-Item -Path $Output -ItemType "file" -Value ($payload | ConvertTo-Json -AsArray) -Force
   
   } else {
       ############
       ## Send the content to the data collection endpoint
       ############
       if ($null -eq $DcrImmutableId) {
           $DcrImmutableId = Read-Host "Enter DCR Immutable ID" 
       };
   
       if ($null -eq $DceURI) {
           $DceURI = Read-Host "Enter data collection endpoint URI" 
       }
   
       if ($null -eq $Table) {
           $Table = Read-Host "Enter the name of custom log table" 
       }
   
       ## Obtain a bearer token used to authenticate against the data collection endpoint
       $scope = [System.Web.HttpUtility]::UrlEncode("https://monitor.azure.com//.default")   
       $body = "client_id=$appId&scope=$scope&client_secret=$appSecret&grant_type=client_credentials";
       $headers = @{"Content-Type" = "application/x-www-form-urlencoded" };
       $uri = "https://login.microsoftonline.com/$tenantId/oauth2/v2.0/token"
       $bearerToken = (Invoke-RestMethod -Uri $uri -Method "Post" -Body $body -Headers $headers).access_token
   
       ## Generate and send some data
       foreach ($line in $file_data) {
           # We are going to send log entries one by one with a small delay
           $log_entry = @{
               # Define the structure of log entry, as it will be sent
               Time = Get-Date ([datetime]::UtcNow) -Format O
               Application = "LogGenerator"
               RawData = $line
           }
           # Sending the data to Log Analytics via the DCR!
           $body = $log_entry | ConvertTo-Json -AsArray;
           $headers = @{"Authorization" = "Bearer $bearerToken"; "Content-Type" = "application/json" };
           $uri = "$DceURI/dataCollectionRules/$DcrImmutableId/streams/Custom-$Table"+"?api-version=2023-01-01";
           $uploadResponse = Invoke-RestMethod -Uri $uri -Method "Post" -Body $body -Headers $headers;
   
           # Let's see how the response looks
           Write-Output $uploadResponse
           Write-Output "---------------------"
   
           # Pausing for 1 second before processing the next entry
           Start-Sleep -Seconds 1
       }
   }
   

3. Copiare i dati di log di esempio da Esaminare i dati di esempio o usare i propri dati di log Apache. Salvarlo come sample_access.log.

4. Eseguire il comando seguente per leggere i dati nel file e creare un file JSON denominato data_sample.json:

   .\LogGenerator.ps1 -Log "sample_access.log" -Type "file" -Output "data_sample.json"
   

Invia dati di esempio

Attendere almeno 30 minuti per rendere effettiva la configurazione. È anche possibile che si verifichi una maggiore latenza per le prime voci, ma questa attività deve normalizzare.

1. Eseguire il comando seguente con i valori raccolti per DCR e DCE. Lo script inserisce i dati chiamando l'API a circa un record al secondo.

   .\LogGenerator.ps1 -Log "sample_access.log" -Type "API" -Table "ApacheAccess_CL" -DcrImmutableId <immutable ID> -DceUri <data collection endpoint URL>
   

2. Da Log Analytics eseguire la query seguente per verificare che i dati siano arrivati e trasformati correttamente:

   ApacheAccess_CL
   | take 10
   

   Se vengono visualizzati record con ClientIP, RequestType, Resource, ResponseCode e TimeGenerated, la configurazione funziona correttamente. Se non viene visualizzato alcun dato dopo 30 minuti, vedere Risolvere i problemi comuni.

Risolvere i problemi comuni

Se i dati non vengono visualizzati nella tabella dei log personalizzata, verificare questi problemi comuni:

Per altre indicazioni sulla risoluzione dei problemi, vedere la sezione Risoluzione dei problemi dell'articolo sul codice di esempio.

Esaminare i dati di esempio

Usare i seguenti dati di esempio sintetici per il tutorial. In alternativa, usare i propri dati se si dispone di log di accesso Apache personalizzati.

10.0.144.150 - - [15/Mar/2024:08:00:00 +0000] "POST /pricing HTTP/1.1" 503 588 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
198.51.100.24 - - [15/Mar/2024:08:00:40 +0000] "GET /products/details?id=2087 HTTP/1.1" 200 21854 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
203.0.113.31 - - [15/Mar/2024:08:00:56 +0000] "DELETE /api/v1/health HTTP/1.1" 200 5002 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
198.51.100.58 - - [15/Mar/2024:08:01:36 +0000] "HEAD /docs/getting-started HTTP/2.0" 200 10506 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
203.0.113.107 - - [15/Mar/2024:08:02:04 +0000] "DELETE /css/main.css HTTP/1.1" 500 266 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.187.234 - - [15/Mar/2024:08:02:13 +0000] "GET /dashboard HTTP/1.1" 304 0 "-" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
198.51.100.249 - - [15/Mar/2024:08:02:58 +0000] "HEAD /favicon.ico HTTP/1.1" 200 32197 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
10.0.132.58 - - [15/Mar/2024:08:03:11 +0000] "GET /blog/2024/new-features HTTP/1.1" 200 17354 "https://www.contoso-web.example.com/products" "curl/8.5.0" "-"
198.51.100.203 - - [15/Mar/2024:08:03:16 +0000] "GET /fonts/opensans.woff2 HTTP/1.1" 200 54415 "-" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
10.0.209.6 - - [15/Mar/2024:08:03:40 +0000] "HEAD /api/v1/inventory HTTP/1.1" 200 6523 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
203.0.113.49 - - [15/Mar/2024:08:04:35 +0000] "GET /login HTTP/1.1" 200 33218 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.138 - - [15/Mar/2024:08:04:59 +0000] "POST /download/latest HTTP/2.0" 200 1644 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
10.0.195.154 - - [15/Mar/2024:08:05:09 +0000] "GET /favicon.ico HTTP/1.1" 200 9439 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
203.0.113.110 - - [15/Mar/2024:08:06:24 +0000] "PUT /docs/getting-started HTTP/1.1" 200 18702 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.26.65 - - [15/Mar/2024:08:07:45 +0000] "DELETE /api/v1/status HTTP/1.1" 503 387 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
198.51.100.47 - - [15/Mar/2024:08:09:01 +0000] "GET /admin/reports HTTP/1.1" 200 20411 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
10.0.166.75 - - [15/Mar/2024:08:09:37 +0000] "HEAD /support/tickets HTTP/2.0" 302 6731 "-" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
203.0.113.55 - - [15/Mar/2024:08:09:50 +0000] "GET /about.html HTTP/1.1" 200 11857 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
203.0.113.65 - - [15/Mar/2024:08:10:29 +0000] "PUT /pricing HTTP/1.1" 404 202 "https://www.contoso-web.example.com/" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
198.51.100.88 - - [15/Mar/2024:08:11:06 +0000] "DELETE /images/logo.png HTTP/1.1" 404 286 "-" "axios/1.6.7" "-"
203.0.113.179 - - [15/Mar/2024:08:12:26 +0000] "HEAD /products/details?id=3291 HTTP/1.1" 200 29107 "https://www.contoso-web.example.com/docs/getting-started" "Python-urllib/3.12" "-"
10.0.96.59 - - [15/Mar/2024:08:13:36 +0000] "GET /api/v1/orders HTTP/1.1" 304 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.240.88 - - [15/Mar/2024:08:13:54 +0000] "GET /images/banner.jpg HTTP/1.1" 200 90926 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
198.51.100.36 - - [15/Mar/2024:08:14:21 +0000] "POST /products/details?id=2087 HTTP/1.1" 404 327 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
198.51.100.149 - - [15/Mar/2024:08:15:45 +0000] "HEAD /css/theme.css HTTP/2.0" 200 5724 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
198.51.100.154 - - [15/Mar/2024:08:16:35 +0000] "POST /admin/users HTTP/1.1" 200 23414 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.92 - - [15/Mar/2024:08:16:58 +0000] "GET /index.html HTTP/1.1" 400 352 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.167 - - [15/Mar/2024:08:17:39 +0000] "GET /docs/getting-started HTTP/2.0" 200 13966 "https://www.contoso-web.example.com/products" "axios/1.6.7" "-"
10.0.93.74 - - [15/Mar/2024:08:18:41 +0000] "GET /pricing HTTP/1.1" 400 456 "-" "Python-urllib/3.12" "-"
203.0.113.19 - - [15/Mar/2024:08:19:40 +0000] "GET /images/hero-bg.webp HTTP/2.0" 200 79413 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
203.0.113.165 - - [15/Mar/2024:08:20:57 +0000] "GET /api/v1/users HTTP/1.1" 200 3962 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
198.51.100.13 - - [15/Mar/2024:08:21:51 +0000] "HEAD /products HTTP/1.1" 200 9982 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.80.50 - - [15/Mar/2024:08:23:16 +0000] "GET /api/v1/users HTTP/1.1" 200 2526 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
198.51.100.89 - - [15/Mar/2024:08:24:02 +0000] "GET /sitemap.xml HTTP/1.1" 200 29252 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.236.222 - - [15/Mar/2024:08:24:30 +0000] "GET /api/v1/health HTTP/1.1" 200 608 "https://www.contoso-web.example.com/" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
198.51.100.80 - - [15/Mar/2024:08:25:41 +0000] "GET /products HTTP/1.1" 404 238 "https://www.contoso-web.example.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.210 - - [15/Mar/2024:08:25:56 +0000] "POST /support/kb/1001 HTTP/2.0" 404 284 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
203.0.113.161 - - [15/Mar/2024:08:27:25 +0000] "GET /products HTTP/1.1" 404 183 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
203.0.113.69 - - [15/Mar/2024:08:27:44 +0000] "DELETE /docs/api-reference HTTP/2.0" 404 268 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.93 - - [15/Mar/2024:08:28:35 +0000] "GET /js/analytics.js HTTP/1.1" 500 477 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.105.141 - - [15/Mar/2024:08:29:34 +0000] "GET /download/latest HTTP/1.1" 200 24434 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.162.224 - - [15/Mar/2024:08:30:42 +0000] "GET /js/analytics.js HTTP/1.1" 404 451 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
198.51.100.89 - - [15/Mar/2024:08:32:09 +0000] "GET /blog/2024/performance-tips HTTP/1.1" 404 353 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.49 - - [15/Mar/2024:08:32:59 +0000] "GET /api/v1/orders HTTP/1.1" 200 1305 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
203.0.113.20 - - [15/Mar/2024:08:34:25 +0000] "GET /images/hero-bg.webp HTTP/1.1" 401 532 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
10.0.139.177 - - [15/Mar/2024:08:35:06 +0000] "GET /about.html HTTP/2.0" 200 24876 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
203.0.113.230 - - [15/Mar/2024:08:36:12 +0000] "GET /admin/users HTTP/1.1" 200 6595 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.134 - - [15/Mar/2024:08:36:29 +0000] "HEAD /docs/faq HTTP/1.1" 200 5233 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.14.232 - - [15/Mar/2024:08:37:56 +0000] "PUT /js/app.js HTTP/1.1" 200 10423 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
203.0.113.7 - - [15/Mar/2024:08:37:57 +0000] "PUT /api/v1/orders HTTP/1.1" 200 3931 "https://www.contoso-web.example.com/products" "curl/8.5.0" "-"
10.0.7.17 - - [15/Mar/2024:08:38:48 +0000] "GET /api/v2/search?q=monitor HTTP/2.0" 200 2886 "https://www.contoso-web.example.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.3.75 - - [15/Mar/2024:08:40:17 +0000] "HEAD /docs/faq HTTP/1.1" 200 30166 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.244 - - [15/Mar/2024:08:41:33 +0000] "HEAD /support/kb/2045 HTTP/1.1" 404 510 "https://www.contoso-web.example.com/docs/getting-started" "axios/1.6.7" "-"
10.0.98.177 - - [15/Mar/2024:08:42:23 +0000] "GET /pricing HTTP/1.1" 200 1235 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
198.51.100.112 - - [15/Mar/2024:08:43:30 +0000] "DELETE /css/theme.css HTTP/1.1" 401 439 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
203.0.113.62 - - [15/Mar/2024:08:44:57 +0000] "GET /favicon.ico HTTP/1.1" 200 31785 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.52.35 - - [15/Mar/2024:08:45:35 +0000] "POST /blog/2024/performance-tips HTTP/2.0" 200 6108 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.44 - - [15/Mar/2024:08:46:32 +0000] "POST /login HTTP/1.1" 200 14068 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
203.0.113.248 - - [15/Mar/2024:08:47:16 +0000] "DELETE /images/hero-bg.webp HTTP/1.1" 200 5877 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
198.51.100.199 - - [15/Mar/2024:08:47:47 +0000] "GET / HTTP/1.1" 404 194 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.122.128 - - [15/Mar/2024:08:48:13 +0000] "GET /api/v1/inventory HTTP/1.1" 200 7935 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.125 - - [15/Mar/2024:08:48:15 +0000] "GET /products/details?id=3291 HTTP/2.0" 304 0 "https://www.contoso-web.example.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.224.122 - - [15/Mar/2024:08:49:21 +0000] "GET /about.html HTTP/1.1" 200 22671 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.136 - - [15/Mar/2024:08:50:06 +0000] "GET /products/details?id=3291 HTTP/1.1" 200 26601 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.52 - - [15/Mar/2024:08:51:16 +0000] "GET /dashboard/settings HTTP/2.0" 401 211 "-" "axios/1.6.7" "-"
10.0.179.107 - - [15/Mar/2024:08:52:32 +0000] "GET /api/v1/inventory HTTP/2.0" 200 5011 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
10.0.77.165 - - [15/Mar/2024:08:52:36 +0000] "PUT /docs/getting-started HTTP/1.1" 200 17459 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.196.168 - - [15/Mar/2024:08:52:54 +0000] "GET /products/details?id=1042 HTTP/1.1" 200 6902 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
203.0.113.67 - - [15/Mar/2024:08:54:15 +0000] "POST /api/v1/inventory HTTP/1.1" 200 5818 "https://www.contoso-web.example.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.75.215 - - [15/Mar/2024:08:55:33 +0000] "GET /api/v1/inventory HTTP/2.0" 401 211 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
198.51.100.177 - - [15/Mar/2024:08:55:53 +0000] "GET /index.html HTTP/2.0" 200 20022 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
198.51.100.5 - - [15/Mar/2024:08:57:16 +0000] "POST /images/hero-bg.webp HTTP/1.1" 200 118872 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
198.51.100.212 - - [15/Mar/2024:08:57:34 +0000] "GET /api/v1/health HTTP/2.0" 304 0 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
203.0.113.172 - - [15/Mar/2024:08:57:37 +0000] "GET /docs/api-reference HTTP/1.1" 200 19005 "https://www.contoso-web.example.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.128.161 - - [15/Mar/2024:08:59:01 +0000] "GET /dashboard HTTP/1.1" 502 479 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.119.212 - - [15/Mar/2024:09:00:11 +0000] "GET /pricing HTTP/2.0" 500 509 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.88.245 - - [15/Mar/2024:09:00:43 +0000] "GET /contact.html HTTP/1.1" 200 24833 "https://www.contoso-web.example.com/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
10.0.127.189 - - [15/Mar/2024:09:01:47 +0000] "GET /sitemap.xml HTTP/1.1" 200 30554 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.5 - - [15/Mar/2024:09:01:58 +0000] "DELETE /api/v2/search?q=logs HTTP/1.1" 404 224 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
203.0.113.107 - - [15/Mar/2024:09:02:21 +0000] "GET /docs/faq HTTP/2.0" 200 10905 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
203.0.113.241 - - [15/Mar/2024:09:03:06 +0000] "HEAD /favicon.ico HTTP/1.1" 200 2116 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.127 - - [15/Mar/2024:09:04:36 +0000] "HEAD /support/kb/1001 HTTP/2.0" 200 19023 "-" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
198.51.100.37 - - [15/Mar/2024:09:04:56 +0000] "GET /css/main.css HTTP/2.0" 200 14286 "-" "curl/8.5.0" "-"
203.0.113.100 - - [15/Mar/2024:09:05:09 +0000] "GET /dashboard/settings HTTP/1.1" 200 15588 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
10.0.119.46 - - [15/Mar/2024:09:06:05 +0000] "DELETE /fonts/opensans.woff2 HTTP/1.1" 404 456 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
203.0.113.130 - - [15/Mar/2024:09:06:54 +0000] "GET /fonts/opensans.woff2 HTTP/1.1" 401 437 "-" "curl/8.5.0" "-"
10.0.100.13 - - [15/Mar/2024:09:07:22 +0000] "PUT /products/details?id=2087 HTTP/1.1" 200 1326 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.38 - - [15/Mar/2024:09:08:22 +0000] "GET /images/banner.jpg HTTP/1.1" 200 89850 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.57 - - [15/Mar/2024:09:08:57 +0000] "GET /admin/reports HTTP/1.1" 500 333 "-" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.6.147 - - [15/Mar/2024:09:10:00 +0000] "GET /support/kb/2045 HTTP/1.1" 200 18279 "https://www.contoso-web.example.com/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.86 - - [15/Mar/2024:09:10:09 +0000] "PUT /products/details?id=1042 HTTP/2.0" 401 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.16 - - [15/Mar/2024:09:11:03 +0000] "PUT /favicon.ico HTTP/1.1" 304 0 "https://www.contoso-web.example.com/" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
198.51.100.35 - - [15/Mar/2024:09:12:16 +0000] "PUT /images/banner.jpg HTTP/1.1" 200 74710 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
198.51.100.22 - - [15/Mar/2024:09:12:38 +0000] "GET /dashboard HTTP/1.1" 200 7065 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
10.0.112.6 - - [15/Mar/2024:09:14:00 +0000] "PUT /download/latest HTTP/1.1" 200 14596 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
203.0.113.182 - - [15/Mar/2024:09:15:02 +0000] "HEAD /dashboard HTTP/1.1" 200 23295 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.246.120 - - [15/Mar/2024:09:16:15 +0000] "PUT /api/v1/status HTTP/1.1" 200 1859 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
203.0.113.163 - - [15/Mar/2024:09:16:44 +0000] "GET /images/logo.png HTTP/1.1" 200 20968 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
10.0.154.169 - - [15/Mar/2024:09:17:04 +0000] "GET /css/theme.css HTTP/1.1" 200 20486 "https://search.contoso.example.com/results?q=monitor+logs" "curl/8.5.0" "-"
203.0.113.70 - - [15/Mar/2024:09:17:21 +0000] "PUT /css/main.css HTTP/2.0" 200 11344 "https://www.contoso-web.example.com/" "curl/8.5.0" "-"
10.0.70.200 - - [15/Mar/2024:09:18:03 +0000] "GET /admin/users HTTP/2.0" 200 6236 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.4 - - [15/Mar/2024:09:19:18 +0000] "DELETE /api/v2/search?q=logs HTTP/1.1" 200 7477 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.65 - - [15/Mar/2024:09:19:32 +0000] "GET /products/details?id=1042 HTTP/1.1" 200 13081 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
203.0.113.204 - - [15/Mar/2024:09:20:52 +0000] "DELETE /about.html HTTP/1.1" 200 27612 "-" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
203.0.113.81 - - [15/Mar/2024:09:21:05 +0000] "GET / HTTP/1.1" 403 416 "https://www.contoso-web.example.com/" "axios/1.6.7" "-"
10.0.251.72 - - [15/Mar/2024:09:22:34 +0000] "GET /about.html HTTP/1.1" 200 5059 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.78 - - [15/Mar/2024:09:22:55 +0000] "PUT /css/theme.css HTTP/1.1" 302 43869 "https://www.contoso-web.example.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
203.0.113.237 - - [15/Mar/2024:09:23:09 +0000] "DELETE /about.html HTTP/1.1" 404 330 "-" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
10.0.178.63 - - [15/Mar/2024:09:23:31 +0000] "PUT /pricing HTTP/1.1" 200 3517 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.94 - - [15/Mar/2024:09:23:38 +0000] "GET /css/main.css HTTP/1.1" 200 10624 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.160 - - [15/Mar/2024:09:24:17 +0000] "HEAD /api/v1/orders HTTP/1.1" 200 4928 "-" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
203.0.113.95 - - [15/Mar/2024:09:24:32 +0000] "PUT /dashboard HTTP/1.1" 304 0 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.105 - - [15/Mar/2024:09:24:54 +0000] "GET /about.html HTTP/1.1" 200 29644 "https://www.contoso-web.example.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
10.0.155.45 - - [15/Mar/2024:09:24:57 +0000] "GET /docs/api-reference HTTP/1.1" 200 23496 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
198.51.100.134 - - [15/Mar/2024:09:25:12 +0000] "PUT /support/kb/1001 HTTP/1.1" 200 23411 "https://www.contoso-web.example.com/docs/getting-started" "curl/8.5.0" "-"
203.0.113.123 - - [15/Mar/2024:09:25:16 +0000] "DELETE /docs/getting-started HTTP/1.1" 200 33721 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.40 - - [15/Mar/2024:09:25:53 +0000] "HEAD /support/kb/2045 HTTP/1.1" 302 6724 "https://www.contoso-web.example.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
198.51.100.237 - - [15/Mar/2024:09:26:46 +0000] "GET /contact.html HTTP/1.1" 200 26385 "https://www.contoso-web.example.com/products" "axios/1.6.7" "-"
203.0.113.250 - - [15/Mar/2024:09:27:10 +0000] "PUT /sitemap.xml HTTP/1.1" 200 3261 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.146.130 - - [15/Mar/2024:09:27:43 +0000] "GET /login HTTP/2.0" 403 154 "https://www.contoso-web.example.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
10.0.85.245 - - [15/Mar/2024:09:28:59 +0000] "PUT /admin/users HTTP/1.1" 200 24276 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
10.0.234.28 - - [15/Mar/2024:09:29:59 +0000] "POST /css/main.css HTTP/2.0" 200 4532 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.112 - - [15/Mar/2024:09:31:21 +0000] "GET /products HTTP/1.1" 404 325 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.105 - - [15/Mar/2024:09:32:08 +0000] "POST /blog/2024/performance-tips HTTP/1.1" 200 6005 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.243 - - [15/Mar/2024:09:33:24 +0000] "HEAD /products/details?id=1042 HTTP/1.1" 200 31460 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
203.0.113.73 - - [15/Mar/2024:09:33:55 +0000] "POST /products HTTP/1.1" 200 13432 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.146.116 - - [15/Mar/2024:09:34:54 +0000] "GET /contact.html HTTP/1.1" 200 32849 "https://www.contoso-web.example.com/docs/getting-started" "curl/8.5.0" "-"
198.51.100.114 - - [15/Mar/2024:09:36:16 +0000] "POST /api/v1/inventory HTTP/1.1" 200 2408 "https://www.contoso-web.example.com/products" "curl/8.5.0" "-"
10.0.143.180 - - [15/Mar/2024:09:37:31 +0000] "POST /docs/getting-started HTTP/1.1" 200 6891 "https://search.contoso.example.com/results?q=monitor+logs" "Python-urllib/3.12" "-"
203.0.113.22 - - [15/Mar/2024:09:38:52 +0000] "PUT /api/v1/users HTTP/1.1" 401 202 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
203.0.113.235 - - [15/Mar/2024:09:39:00 +0000] "GET /blog/2024/performance-tips HTTP/1.1" 404 336 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.35.68 - - [15/Mar/2024:09:39:17 +0000] "POST /download/latest HTTP/1.1" 200 28141 "-" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
10.0.245.37 - - [15/Mar/2024:09:40:46 +0000] "PUT /docs/api-reference HTTP/1.1" 304 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.94 - - [15/Mar/2024:09:41:26 +0000] "DELETE /contact.html HTTP/1.1" 200 7501 "https://www.contoso-web.example.com/" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
10.0.72.57 - - [15/Mar/2024:09:42:45 +0000] "PUT /js/analytics.js HTTP/1.1" 404 331 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
10.0.148.74 - - [15/Mar/2024:09:43:56 +0000] "GET /api/v1/orders HTTP/2.0" 200 2906 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.66 - - [15/Mar/2024:09:45:02 +0000] "GET /dashboard HTTP/1.1" 403 419 "-" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.59 - - [15/Mar/2024:09:45:47 +0000] "GET /products/catalog HTTP/1.1" 200 12346 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
198.51.100.244 - - [15/Mar/2024:09:45:56 +0000] "GET /images/logo.png HTTP/1.1" 200 27223 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.218 - - [15/Mar/2024:09:46:55 +0000] "HEAD /support/kb/2045 HTTP/1.1" 200 2283 "https://portal.contoso.example.com/dashboard" "Python-urllib/3.12" "-"
203.0.113.156 - - [15/Mar/2024:09:47:42 +0000] "GET /api/v2/search?q=logs HTTP/2.0" 404 432 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
203.0.113.220 - - [15/Mar/2024:09:49:01 +0000] "GET /api/v2/search?q=logs HTTP/2.0" 502 549 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
10.0.171.103 - - [15/Mar/2024:09:49:27 +0000] "DELETE /support/kb/2045 HTTP/2.0" 200 22105 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
198.51.100.105 - - [15/Mar/2024:09:50:21 +0000] "GET / HTTP/2.0" 200 34208 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
203.0.113.2 - - [15/Mar/2024:09:51:12 +0000] "GET /support/kb/2045 HTTP/2.0" 304 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.61 - - [15/Mar/2024:09:51:55 +0000] "PUT /download/latest HTTP/1.1" 200 29957 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
198.51.100.42 - - [15/Mar/2024:09:52:12 +0000] "GET /docs/api-reference HTTP/1.1" 404 234 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.203 - - [15/Mar/2024:09:52:33 +0000] "DELETE /api/v1/orders HTTP/1.1" 404 444 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.64 - - [15/Mar/2024:09:53:07 +0000] "PUT /products/details?id=2087 HTTP/2.0" 200 26159 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
203.0.113.58 - - [15/Mar/2024:09:53:29 +0000] "GET /css/theme.css HTTP/2.0" 200 14059 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
198.51.100.11 - - [15/Mar/2024:09:54:34 +0000] "GET /api/v1/health HTTP/1.1" 200 6491 "https://search.contoso.example.com/results?q=monitor+logs" "Python-urllib/3.12" "-"
203.0.113.182 - - [15/Mar/2024:09:55:27 +0000] "GET /products/catalog HTTP/1.1" 200 31011 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.162.84 - - [15/Mar/2024:09:55:30 +0000] "GET /products/catalog HTTP/2.0" 200 14183 "-" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
10.0.42.30 - - [15/Mar/2024:09:56:22 +0000] "GET /docs/getting-started HTTP/2.0" 304 0 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.183 - - [15/Mar/2024:09:57:25 +0000] "GET /dashboard/settings HTTP/1.1" 200 27116 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
10.0.238.85 - - [15/Mar/2024:09:58:43 +0000] "DELETE /blog/2024/performance-tips HTTP/1.1" 200 6665 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.83.38 - - [15/Mar/2024:09:59:03 +0000] "GET /docs/getting-started HTTP/1.1" 301 28536 "https://portal.contoso.example.com/dashboard" "curl/8.5.0" "-"
198.51.100.138 - - [15/Mar/2024:09:59:29 +0000] "GET /fonts/opensans.woff2 HTTP/1.1" 304 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.169 - - [15/Mar/2024:09:59:34 +0000] "GET /pricing HTTP/2.0" 200 20414 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
10.0.149.235 - - [15/Mar/2024:09:59:43 +0000] "DELETE /products/catalog HTTP/1.1" 200 7249 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.17 - - [15/Mar/2024:10:00:52 +0000] "HEAD /api/v2/search?q=monitor HTTP/2.0" 200 1409 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
198.51.100.162 - - [15/Mar/2024:10:02:03 +0000] "GET /admin/reports HTTP/1.1" 200 25674 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
198.51.100.196 - - [15/Mar/2024:10:02:41 +0000] "POST /login HTTP/1.1" 500 158 "https://portal.contoso.example.com/dashboard" "curl/8.5.0" "-"
10.0.51.98 - - [15/Mar/2024:10:03:45 +0000] "PUT /api/v1/users HTTP/1.1" 200 2403 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.139.98 - - [15/Mar/2024:10:05:02 +0000] "PUT /docs/faq HTTP/1.1" 304 0 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
10.0.230.52 - - [15/Mar/2024:10:05:45 +0000] "GET /dashboard HTTP/1.1" 200 14400 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.98.86 - - [15/Mar/2024:10:05:56 +0000] "GET /pricing HTTP/1.1" 200 5881 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
203.0.113.125 - - [15/Mar/2024:10:06:58 +0000] "GET /docs/faq HTTP/2.0" 200 15606 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
10.0.120.68 - - [15/Mar/2024:10:07:23 +0000] "GET /api/v1/status HTTP/1.1" 200 2180 "https://www.contoso-web.example.com/docs/getting-started" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.115 - - [15/Mar/2024:10:07:47 +0000] "GET /dashboard/settings HTTP/1.1" 200 33326 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.126.159 - - [15/Mar/2024:10:09:17 +0000] "GET /js/analytics.js HTTP/1.1" 403 212 "-" "Python-urllib/3.12" "-"
203.0.113.71 - - [15/Mar/2024:10:09:39 +0000] "GET /js/analytics.js HTTP/1.1" 200 14377 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.166 - - [15/Mar/2024:10:10:34 +0000] "GET /products/catalog HTTP/1.1" 304 0 "https://www.contoso-web.example.com/" "curl/8.5.0" "-"
198.51.100.210 - - [15/Mar/2024:10:12:03 +0000] "DELETE /support/tickets HTTP/2.0" 200 28291 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.103 - - [15/Mar/2024:10:13:03 +0000] "GET /robots.txt HTTP/1.1" 200 19145 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" "-"
10.0.29.154 - - [15/Mar/2024:10:13:53 +0000] "GET /js/analytics.js HTTP/1.1" 200 11324 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
198.51.100.22 - - [15/Mar/2024:10:14:25 +0000] "PUT /docs/api-reference HTTP/1.1" 200 2416 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (compatible; AhrefsBot/7.0; +http://ahrefs.com/robot/)" "-"
203.0.113.36 - - [15/Mar/2024:10:15:01 +0000] "PUT /css/theme.css HTTP/2.0" 200 42635 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.185 - - [15/Mar/2024:10:15:23 +0000] "GET /robots.txt HTTP/1.1" 200 6896 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.92.206 - - [15/Mar/2024:10:15:50 +0000] "PUT /products HTTP/1.1" 404 230 "-" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
198.51.100.200 - - [15/Mar/2024:10:16:07 +0000] "POST /products HTTP/1.1" 401 266 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.235.2 - - [15/Mar/2024:10:16:21 +0000] "GET /products/catalog HTTP/2.0" 403 398 "-" "axios/1.6.7" "-"
198.51.100.33 - - [15/Mar/2024:10:17:25 +0000] "GET /robots.txt HTTP/2.0" 200 7803 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
10.0.253.189 - - [15/Mar/2024:10:17:59 +0000] "GET /robots.txt HTTP/1.1" 404 393 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
198.51.100.3 - - [15/Mar/2024:10:19:09 +0000] "GET /api/v1/inventory HTTP/1.1" 200 7035 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.64 Mobile Safari/537.36" "-"
198.51.100.108 - - [15/Mar/2024:10:19:22 +0000] "POST /images/banner.jpg HTTP/1.1" 200 119730 "https://www.contoso-web.example.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.130.134 - - [15/Mar/2024:10:19:25 +0000] "GET /js/app.js HTTP/1.1" 401 246 "https://www.contoso-web.example.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
203.0.113.213 - - [15/Mar/2024:10:20:29 +0000] "PUT /login HTTP/1.1" 200 7016 "-" "Mozilla/5.0 (Linux; Android 13; SM-S911B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36" "-"
198.51.100.171 - - [15/Mar/2024:10:20:46 +0000] "PUT /admin/reports HTTP/2.0" 200 9250 "https://portal.contoso.example.com/dashboard" "Python-urllib/3.12" "-"
10.0.204.237 - - [15/Mar/2024:10:21:59 +0000] "HEAD /js/analytics.js HTTP/2.0" 200 8118 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
203.0.113.185 - - [15/Mar/2024:10:23:08 +0000] "GET /admin/reports HTTP/1.1" 302 16466 "https://www.contoso-web.example.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"
10.0.207.154 - - [15/Mar/2024:10:24:07 +0000] "DELETE /support/kb/2045 HTTP/1.1" 200 23028 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
203.0.113.35 - - [15/Mar/2024:10:24:15 +0000] "DELETE /api/v1/health HTTP/2.0" 200 2452 "https://www.contoso-web.example.com/products" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
198.51.100.177 - - [15/Mar/2024:10:25:45 +0000] "HEAD /api/v1/orders HTTP/1.1" 401 309 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" "-"
10.0.70.137 - - [15/Mar/2024:10:25:47 +0000] "GET /about.html HTTP/1.1" 200 28630 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
10.0.95.70 - - [15/Mar/2024:10:26:32 +0000] "GET /api/v2/search?q=logs HTTP/1.1" 200 720 "https://search.contoso.example.com/results?q=monitor+logs" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:124.0) Gecko/20100101 Firefox/124.0" "-"
203.0.113.86 - - [15/Mar/2024:10:27:46 +0000] "GET /js/app.js HTTP/1.1" 200 2753 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/122.0.6261.62 Mobile/15E148 Safari/604.1" "-"
203.0.113.201 - - [15/Mar/2024:10:29:04 +0000] "DELETE /support/tickets HTTP/1.1" 401 403 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)" "-"
10.0.231.94 - - [15/Mar/2024:10:29:05 +0000] "POST /sitemap.xml HTTP/2.0" 200 20531 "https://www.contoso-web.example.com/blog/2024/new-features" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Safari/605.1.15" "-"
203.0.113.176 - - [15/Mar/2024:10:29:28 +0000] "GET /products/details?id=3291 HTTP/1.1" 200 29593 "https://portal.contoso.example.com/dashboard" "Mozilla/5.0 (iPad; CPU OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1" "-"

Pulire le risorse

Se non sono più necessarie le risorse create in questa esercitazione, eliminarle per evitare i costi. Eliminare il gruppo di risorse che contiene l'area di lavoro DCE, DCR e Log Analytics. Se è stata registrata un'applicazione Microsoft Entra solo per questa esercitazione, eliminare la registrazione dell'app dalla pagina Registrazioni app nel portale di Azure.

Contenuti correlati

• Panoramica dell'API di inserimento dei log
• Tutorial: inviare dati a Monitoraggio di Azure usando l'API di inserimento log (modelli di Resource Manager)
• Panoramica delle regole di raccolta dati
• Panoramica degli endpoint di raccolta dati