Sophos UTM can automatically export archived log files once daily. This option is disabled by default. To enable it, go to Logging & Reporting -> Log Settings in the management console:
This option can be useful when you want to get log files created before you enabled the automatic export option. Go to Logging & Reporting -> View Log Files in the management console and select the Archived Log Files tab. ProxyInspector needs log files of only two subsystems: Web Filtering and Firewall, and you have to export them:
You can also access the log files via SSH/SCP. To enable SSH, go to Management -> System Settings -> Shell access. The log files you need are located in the /var/log/http и /var/log/packetfilter folders. Each one of these folders contains subfolders of the YEAR/MONTH type, which is where the archived log files proper are stored. By default, only the root account is cleared to access the YEAR/MONTH subfolders. The loginuser account does not have such access privileges.
Tags: Sophos UTM, ProxyInspector, log file, Astaro