Event Log 2
Classification
Rule Name | Rule Type | Classification | Common Event |
|---|---|---|---|
| Event Log | Base Rule | Information | Event Logged |
| General Critical Condition | Sub Rule | Critical | General Critical |
| General Error | Sub Rule | Error | General Error |
| General Warning | Sub Rule | Warning | General Warning |
| General Information Message | Sub Rule | Information | General Information |
| General Debug Message | Sub Rule | Other Operations | General Debug Message |
| General Notice | Sub Rule | Information | General Notice |
| General Alert | Sub Rule | Critical | General Alert |
| General Emergency Condition | Sub Rule | Critical | General Emergency Condition |
Mapping with LogRhythm Schema
| Device Key in Log Message | LogRhythm Schema | Data Type |
| N/A | <severity> | Text\String |
| N/A | <sip> | Number |
| N/A | <dip> | Number |
| N/A | <sinterface> | Text\String |
| N/A | <dinterface> | Text\String |
| N/A | <session> | Number |
| N/A | <subject> | Text\String |
| N/A | <status> | Text\String |
| N/A | <tag1> | Text\String |