V 2.0 : Event : WAD
General Firewall Event
V 2.0 : WAD SSL DECRY FAIL
V 2.0 : WAD SSL NOT SUPPORT CS
Module Not Supported
V 2.0 : WAD SSL RCV ALERT
SSL Information-Only Event
V 2.0 : WAD SSL RCV FATAL ALERT
SSL Connection Error
V 2.0 : WAD SSL SENT FATAL ALERT
SSL Key Information
Mapping with LogRhythm Schema
Device Key in Log Message
The date of the log event.
The time of the log event.
A unique identifier for the log event.
The type of log event. In this case, it is an event.
The subtype of the log event. In this case, it is a wad event.
The severity level of the log event. In this case, it is an error.
The vdom in which the log event occurred.
The time at which the log event occurred.
The description of the log event.
The session ID of the SSL connection.
The policy ID that was used for the SSL connection.
The source IP address of the SSL connection.
The source port of the SSL connection.
The destination IP address of the SSL connection.
The destination port of the SSL connection.
The action that was taken. In this case, it was a receive.
The alert code that was received.
The description of the alert code.
The message associated with the log event.