Access Logs

The access log is a per-request audit trail of agent-network traffic. Each entry records the caller, provider and model, tokens and cost, the policy decision, and the reason a request was allowed or denied.

agent network access logs table

Columns

Time
User / Agent — the resolved caller identity.
Auth Group — the groups that authorized the request.
Provider — resolved provider and model.
Tokens — input and output.
Cost
Status and Reason — for denials, the mapped policy reason; for allowed requests, a link to the policy that authorized it.

Filtering

agent network access log filters

Filter the log by:

Date — defaults to the last 14 days.
User
Group
Provider
Model
Path — match requests whose path starts with a given prefix (e.g. /v1/messages).

All filtering is applied server-side.

Availability

Access logs are retained only when log collection is enabled for the account. Usage and cost are still recorded when it's off — see Log Collection & Retention.

Install NetBird

Platforms

Policies

Usage & Logs

Integrations

Peers

Access Control

Networks

Routes

Reverse Proxy

DNS

Team

Activity

Settings

Integrations

Public API

For Partners

Cloud Marketplaces

Maintenance

Observability

Authentication

Troubleshooting

Migration Guides

Settings

Remote Access

Homelab

Cloud

Security

Troubleshooting

Support Matrix

Access Logs

Columns

Filtering

Availability