Vendor Documentation
Classification
|
Rule Name |
Rule Type |
Common Event |
Classification
|
|---|---|---|---|
|
Catch All : Level 2 |
Base Rule |
General Information |
Information |
Mapping with LogRhythm Schema
|
Device Key in Log Message |
LogRhythm Schema |
Data Type |
|
severity |
<severity> |
Text/String |
|
version |
<version> |
Number |
|
vmid |
<vmid> |
Number |
|
command |
<command> |
Text/String |
|
severity |
<severity> |
Number |
|
subject |
<subject> |
Text/String |
|
sport |
<sport> |
Number |
|
sname |
<sname> |
Text/String |
|
dvchost |
<dname> |
Text/String |
|
dip |
<dip> |
IP Address |