Breadcrumbs

Port Information

Classification

Rule Name

Rule Type

Common Event

Classification

Port Information

Base Rule

General Interface Log

Information

Port Disabled

Sub Rule

Configuration Disabled : Network Access

Configuration

Client Disconnected From Port

Sub Rule

Client Disconnected

Other Audit Success

Mapping with LogRhythm Schema

Device Key in Log Message

LogRhythm Schema

Data Type

N/A

<severity>

Text/String

svmkernel

<process>

Text/String

N/A

<tag1>

Text/String

port

<object>

Number/Text