Classification
|
Rule Name |
Rule Type |
Classification |
Common Event |
|---|---|---|---|
|
Pattern 11 : General Information |
Base Rule |
Information |
General Information |
|
Automount Startup Succeeded |
Sub Rule |
Startup and Shutdown |
Process/Service Started |
|
Mounting NFS Filesystem Failed |
Sub Rule |
Error |
Failed To Mount File System |
|
Mount Version Information |
Sub Rule |
Information |
General Mount Version Information |
|
Mount Version Older Than Kernel |
Sub Rule |
Warning |
Mount Version Older Than Kernel Version |
|
Mount Using NFS Transport TCP |
Sub Rule |
Information |
Mount Using NFS Transport TCP |
|
Mounting Other Filesystem Succeeded |
Sub Rule |
Information |
File System Mounted |
|
Mount Using NFS Version 3 |
Sub Rule |
Information |
General Mount Version Information |
|
Automount Startup Failed |
Sub Rule |
Warning |
Automount Startup Failed |
|
Filesystem Already Mounted |
Sub Rule |
Information |
Filesystem Already Mounted |
|
Mounting Filesystem Failed |
Sub Rule |
Error |
Failed To Mount File System |
|
Mount Using NFS Version 3 |
Sub Rule |
Information |
General Mount Version Information |
|
Mount Version Information |
Sub Rule |
Information |
General Mount Version Information |
|
Unknown Host |
Sub Rule |
Information |
Unknown Host |
|
Audit Daemon Rotating Log Files |
Sub Rule |
Information |
Log File Rotated |
|
Console Ready |
Sub Rule |
Information |
Console Ready |
|
Cupsd Startup Succeeded |
Sub Rule |
Startup and Shutdown |
Process/Service Started |
|
Cupsd Shutdown Succeeded |
Sub Rule |
Startup and Shutdown |
Process/Service Stopped |
|
Time Synchronization Lost |
Sub Rule |
Warning |
Time Synchronization Lost |
|
Kernel Messages Suppressed |
Sub Rule |
Information |
Printk General Information |
Mapping with LogRhythm Schema
|
Device Key in Log Message |
LogRhythm Schema |
Data Type |
|---|---|---|
|
N/A |
<dip> |
Number |
|
N/A |
<tag1> |
Text/String |
|
N/A |
<tag2> |
Text/String |
|
N/A |
<quantity> |
Number |
|
N/A |
<tag3> |
Text/String |