-i ---> case-insensitive. This allows you to ignore case while searching. -t ---> grep while also tailing the logs at the same time. This is useful when you're running a test and expecting a certain entry to show up. -p ----> grep where you expect to see numerous copies of the pattern to go by. The -p allows you to see one page at a time.
Here are some more examples to reinforce the idea.
Let's say you're waiting for someone to send in an email with the word "Test" in the subject line, but you don't know when it will occur. The example below allows you to look for that entry without having to sift through a lot of mail traffic. You would add a -p if you knew the results would go across several pages.
example.com> grep -it "Test" mail_logs
Press Ctrl-C to stop. Tue Aug 14 13:17:03 2007 Info: MID 111 Subject 'testing'
Example2: You want to use "findevent" to search for a subject but make it case insentistive at the same time.
findevent -is "Test" mail_logs
MID 56 (Mon Aug 13 20:48:37 2007) test MID 58 (Mon Aug 13 20:59:29 2007) test 2 MID 61 (Mon Aug 13 21:02:09 2007) test 3 MID 111 (Tue Aug 14 13:17:03 2007) testing falcon.run>
You can type, "help findevent" and "help grep" to provide useful information.
Using findevent interactively (just typing "findevent" with no other arguments) does allow you to select a subset of log files. The batch command does not allow specifying a subset of logs. I did think about allowing date ranges but thought it would be a command line formatting nightmare for people.
For offbox use on archived log files, the findevent Python code has been posted to the support portal today under the Tools section.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...