Classification
|
Rule Name |
Rule Type |
Classification |
Common Event |
|---|---|---|---|
|
No Hostname For DHCP |
Sub Rule |
Information |
No Hostname For DHCP IP |
|
DHCP Inform |
Sub Rule |
Network Traffic |
DHCP Inform |
|
DHCP Request |
Sub Rule |
Network Traffic |
DHCP Request |
|
DHCP Acknowledged |
Sub Rule |
Network Traffic |
DHCP ACK |
|
DHCP Offer |
Sub Rule |
Network Traffic |
DHCP Offer |
|
DHCP Discover |
Sub Rule |
Network Traffic |
DHCP Discover |
|
DNSMASQ DHCP |
Base Rule |
Information |
DHCP Information |
|
DHCP Release |
Sub Rule |
Network Traffic |
DHCP Release |
Mapping with LogRhythm Schema
|
Device Key in Log Message |
LogRhythm Schema |
Data Type |
|---|---|---|
|
N/A |
<severity> |
Text/String |
|
N/A |
<dname> |
Text/String |
|
N/A |
<process> |
Text/String |
|
N/A |
<processid> |
Number |
|
N/A |
<command> |
Text/String |
|
N/A |
<tag1> |
Text/String |
|
N/A |
<dip> |
IP Address |
|
N/A |
<dmac> |
Text/String |
|
N/A |
<dinterface> |
Text/String |