Skip to main content
Skip table of contents

V 2.0 Decryption Event Messages

Vendor Documentation

https://www.paloaltonetworks.com/documentation

Classification

Rule Name

Rule Type

Common Event

Classification

V 2.0 Decryption Event MessagesBase RuleSession InformationInformation
V 2.0 Decryption Session AllowedSub RuleTraffic Allowed by Network FirewallNetwork Allow
V 2.0 Decryption Session DeniedSub RuleTraffic Denied by Network FirewallNetwork Deny
V 2.0 Decryption Session DroppedSub RuleTraffic Denied by Network FirewallNetwork Deny
V 2.0 Decryption Session ResetSub RuleTraffic Denied by Network FirewallNetwork Deny

Mapping with LogRhythm Schema  

Device Key in Log Message

LogRhythm Schema

Data Type

N/A<vmid>Text/String
N/A<sip>

Number

N/A<dip>Number
N/A<snatip>Number
N/A<dnatip>Number
N/A<policy>Text/String
N/A<domainorigin>Text/String
N/A<login>Text/String
N/A<domainimpacted>Text/String
N/A<account>Text/String
N/A<sinterface>Text/String/Number
N/A<dinterface>

Text/String/Number

N/A<session>Number
N/A<sport>Number
N/A<dport>Number
N/A<snatport>Number
N/A<dnatport>Number
N/A<protname>Text/String
N/A<action>Text/String
N/A<tag1>Text/String
JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close