Cisco UPDOWN Message

Classification

Rule Name	Rule Type	Common Event	Classification
Cisco UPDOWN Message	Base Rule	General Operations	Other Operations
Interface Up	Sub Rule	Network Interface Changed State To Up	Information
Interface Down	Sub Rule	Network Interface Changed State To Down	Error
Protocol Up	Sub Rule	Network Protocol Changed State To Up	Information
Protocol Down	Sub Rule	Network Protocol Changed State To Down	Error
General Network State Changed	Sub Rule	General Network State Changed	Error
Interface Up (Changed By Admin)	Sub Rule	Network Interface Changed State To Down	Error
Protocol Up	Sub Rule	Network Protocol Changed State To Up	Information
Protocol Down	Sub Rule	Network Protocol Changed State To Down	Error

Mapping with LogRhythm Schema  

Device Key in Log Message	LogRhythm Schema	Data Type
N/A	<vmid>	Text/String
N/A	<vendorinfo>	Text/String
N/A	<severity>	Text/String
N/A	<dname>	Text/String
N/A	<dinterface>	Number
N/A	<subject>	Text/String
N/A	<processid>	Number
N/A	<tag1>	Text/String
N/A	<tag2>	Number
N/A	<tag3>	Text/String

×