dumpel log parameter

What is the -l log parameter in dumpel on a domain controller for:

a) Directory Services
b) DNS Server
c) File Replication Service

I've tried putting these names in quotes.  I also tried using the name of the actual .evt file.  Neither type of name worked.

How do you specify these three log types in the -l log dumpel parameter?
gateguardAsked:
Who is Participating?
 
shivsaConnect With a Mentor Commented:
Note Dumpel can only retrieve content from the system, application, and security log files. You cannot use Dumpel to query content from the File Replication Service, DNS, or Directory Service event logs.
0
 
shivsaCommented:
I think there are 3 kind of event logged with dumpel.
system/application/security.
u can use find to find specific kind of event related to these.
0
 
shivsaCommented:
also u can get more idea from this link.
http://support.microsoft.com/support/kb/articles/Q171/1/48.ASP
0
 
shivsaCommented:
u can also use flag -m to filter out events with names.
-l security -m security
0
 
shivsaCommented:
also if u know event id for these events u can filter out with event id.
like for The logon id is 528, the logoff id is 538. so u can use
-l security -m security -e 528 538
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.