How can I exclude certain file names or IP addresses from the audit log file?

Question

A user writes:

Since audit logging captures everything, it would be nice to be able to exclude either files or IP addresses to log since it may just be "noise". We see this due to using a load balancer which requests an http health page every few seconds, which in turn fills the audit log with "noise". It would be nice to exclude these types of items or source IP addresses.

Answer 1

There are several ways to do this. One way is to override the default logging configuration and change the filtering. To do this:

1. Open the file C:\Program Files (x86)\Complete FTP\Server\CompleteFTPService.exe.config
2. Copy everything from <log4net> to </log4net>, inclusive, to the clipboard
3. Create a file called LogConfig.xml in C:\ProgramData\Enterprise Distributed Technologies\Complete FTP\Logs
4. Paste the content of the clipboard into the new file
5. Underneath the line starting with, <appender name="Audit", paste the following lines:

   <filter type="log4net.Filter.StringMatchFilter">
     <stringToMatch value="123.123.123.123" />
     <acceptOnMatch value="false" />
   </filter>

6. Save the file
7. Restart the CompleteFTP service