DHCPD Messages (Network Traffic)
Classification
Rule Name | Rule Type | Classification | Common Event |
|---|---|---|---|
| DHCPD Messages | Base Rule | DHCP Information | Information |
| DHCPDISCOVER | Sub Rule | DHCP Discover | Network Traffic |
| DHCPOFFER | Sub Rule | DHCP Offer | Network Traffic |
| DHCPACK | Sub Rule | DHCP ACK | Network Traffic |
| DHCPREQUEST | Sub Rule | DHCP Request | Network Traffic |
| DHCPINFORM | Sub Rule | DHCP Inform | Network Traffic |
| No Hostname For DHCP | Sub Rule | No Hostname For DHCP IP | Information |
Mapping with LogRhythm Schema
Device Key in Log Message | LogRhythm Schema | Data Type |
|---|---|---|
| No hostname for | <tag1> | Text/String |
| N/A | <smac> | Text/String |
| N/A | <dinterface> | Text/String |
| 1.1.6.3 | <dip> | Number |
| N/A | <dmac> | Text/String |
| N/A | <sip> | Number |