Vendor Documentation
Classification
|
Rule Name |
Rule Type |
Classification |
Common Event |
|---|---|---|---|
|
SNMP Trap Messages |
Base Rule |
Information |
General SNMPTRAP Information |
Mapping with LogRhythm Schema
|
Device Key in Log Message |
LogRhythm Schema |
Data Type |
Schema Description |
|---|---|---|---|
|
N/A |
N/A |
N/A |
No current information about this data coming in the header. |
|
TIMESTAMP |
N/A |
N/A |
Timestamp |
|
SNMPVER |
<version> |
Number |
N/A |
|
ENTERPRISE |
N/A |
N/A |
N/A |
|
TRAPOID |
N/A |
N/A |
N/A |
|
GENERIC |
N/A |
N/A |
N/A |
|
SPECIFIC |
N/A |
N/A |
N/A |
|
ORIGIN |
<sip> |
IP Address |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.1.0 |
<subject> |
Text/String |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.2.0 |
N/A |
N/A |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.3.0 |
<protname> |
Text/String |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.4.0 |
N/A |
N/A |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.5.0 |
N/A |
N/A |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.6.0 |
N/A |
N/A |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.7.0 |
N/A |
N/A |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.8.0 |
N/A |
N/A |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.9.0 |
N/A |
N/A |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.10.0 |
N/A |
N/A |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.11.0.AdapterID |
<vmid> |
Number |
The XGS adapter ID that the event was triggered on. |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.11.0.AdapterMode |
<vendorinfo> |
Text/String |
The protection mode of the XGS adapter. |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.11.0.appid |
N/A |
N/A |
The Application Identifier. |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.11.0.iprdstgeoid |
N/A |
N/A |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.11.0.iprenabled |
N/A |
N/A |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.11.0.iprlicensed |
N/A |
N/A |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.11.0.iprsrcgeoid |
N/A |
N/A |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.11.0.rulelabel |
<action> |
Text/String |
N/A |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.11.0.ruleorder |
N/A |
N/A |
The rule order on which the event was triggered. |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.11.0.sslmethod |
N/A |
N/A |
The SSL method that the XGS policy rule is using. |
|
DETAILS.enterprises.2499.1.1.2.1.1.1.1.11.0.userid |
<object> |
Text/String |
N/A |
|
TRAPOIDSTR |
N/A |
N/A |
N/A |