Messaging Gateway message audit logs are not included in a Full Backup
Last Updated June 04, 2018
The message Audit Log files are not included in a full backup.
After running a full backup of Symantec Messaging Gateway it is noticed that the message audit logs are not included in the backup.
Here it is illustrated what components are included in each backup type:
Backs up the complete database, as well as the following items:
Spam Quarantine messages
Suspect Virus Quarantine messages
Spam submission submitter ID
Spam submission submitters list
Content filtering messages in Informational Incidents folders that are stored on disk
Content filtering messages in the Quarantine Incidents folders that are stored on disk.
When you select the Custom backup option, the following sub-options appear:
Backs up spam, malware, reputation, and content filtering policies, policy groups, and all policy resources.
Configuration (includes policies)
Backs up all configuration data (which includes all modifiable settings in the Control Center, the spam submission submitter ID, and the submitters list). Also backs up policies plus the additional items that you select as follows:
Include content incident messages - In addition to configuration data and policies, backs up all of the messages that are in all of the content incident folders.
Include report data - In addition to configuration data and policies, backs up all of the report data.
Include log data - In addition to configuration data and policies, backs up all of the log data.
There is a separate utility to backup the message audit log files. The command must be run separately on every Scanner.
Use the CLI mallog command:
Commands related to Message Audit Log mallog --list mallog --backup <url>
mallog --restore <url>
(existing logs are overwritten)