Breadcrumbs

Syslog - A10 Networks Web Application Firewall

Device Details

Vendor

A10 Networks

Device Type

Web Application Firewall

Supported Model Name/Number

Thunder Web Application Firewall

Supported Software Version(s)

N/A

Collection Method

Syslog

Configurable Log Output?

No

Log Source Type

Syslog - A10 Networks Web Application Firewall

Log Processing Policy

LogRhythm Default

Exceptions

N/A

Additional Information

https://www.a10networks.com/wp-content/uploads/A10-SB-19128-EN.pdf

Currently Support Log Types

Type

Product Version

Supported Schema Fields

External Logging Messages

All

Log severity, process, source IP, source port, destination IP, destination port, source host name, url

WAF Messages

All

Log severity, process, source IP, source port, destination IP, destination port, destination host name, action, command, object, vendor info

Catch All

All

Log severity

Parsed Metadata Fields

A10 Networks WAF Field Name

LogRhythm Metadata Field

Value/Data Type

act

<action>

Text/String

dpt

<dport>

Numeric/String

dst

<dip>

Text/String

host

<sname>

Text/String

msg

<vendorinfo>

Vendor Info/String

N/A

<severity>

Text/String

N/A

<process>

Text/String

N/A

<object>

Text/String

N/A

<command>

Command/String

spt

<sport>

Numeric/String

src

<sip>

Source IP Address/String