PD23014 - Host Intrusion Prevention 8.0 ClientControl.exe Utility Readme
Exporting the Host IPS Activity Log to a text file.
1. Open a command shell.
2. Run clientcontrol.exe /export <path of export file>
3. Copy the exported log file to another computer for collection, analysis, etc.
thank you for your suggestion.
The logs are both containing information about the hips- however the way it is displayed is different.
here is one entry from the mcafeefirelog.txt from the desktop - manually exported
Time: 11.02.2013 08:42:34
IP Address/User: 10.18.212.173
Message: Blocked Incoming UDP - Source 10.18.212.173 : (17500) Destination 255.255.255.255 : (17500)
Matched Rule: Block All Traffic
and here is one exported with clientcontrol.exe
Time: 11.02.2013 09:08:43
Event Type: Traffic
IP Address: 10.18.212.189
Local IP Address: 255.255.255.255
Local Port: 43440
Remote IP Address: 10.18.212.189
Remote Port: 50661
Process ID: 0
Description: Block All Traffic
Unfortunately the exported file is not as good to read as the manually exported one.
Another issue i found is that the entries you gain are not the same.
I could not find the same entries for the same time in both logs for that example i posted above.
Please submit a PER if you'd like to request functionality in a future product version.
KB60021 - Information about Product Enhancement Requests for McAfee products