Pattern 19 : System Logs
Vendor Documentation
Classification
| Rule Name | Rule Type | Classification | Common Event |
|---|---|---|---|
| Pattern 19 : System Logs | Base Rule | Operations/Information | General Information |
| Could Not Issue An SNMP Trap | Sub Rule | Ops/Error | Send SNMP Trap Failure |
| Push Success For Subscription | Sub Rule | Operations : Information | General DNS Information |
| Received An Invalid DNS Response | Sub Rule | Operations : Warning | Invalid DNS Response |
| Unable To Send Alert | Sub Rule | Ops/Error | Error Sending Alert |
| Commit Changes | Sub Rule | Audit/Policy | Policy Modified : System |
| DNS Trust Assignment | Sub Rule | Operations : Information | General DNS Information |
| DNS Encache | Sub Rule | Operations : Information | General DNS Information |
| DNS Query | Sub Rule | Operations : Network Traffic | DNS Request |
Mapping with LogRhythm Schema
| Device Key in Log Message | LogRhythm Schema | Data Type | Schema Description |
| <sip> | IP Address | ||
| <sname> | Text\String | ||
| <dip> | IP Address | ||
| <login> | Text\String | ||
| <object> | Text\String | ||
| <recipient> | Text\String | ||
| <tag1> | Text\String | ||
| <tag2> | Text\String | ||
| <tag3> | Text\String |