Skip to main content
Skip table of contents

V 2.0 Traffic Messages 1

Vendor Documentation

Classification

Rule Name

Rule Type

Common Event

Classification

V 2.0 Traffic Messages

Base Rule

General Network Traffic

Network Traffic

V 2.0 Session Started

Sub RuleNetwork Session Created

Network Traffic

V 2.0 Traffic AllowedSub RuleTraffic Allowed by Network FirewallNetwork Allow
V 2.0 Traffic DroppedSub RuleTraffic Denied by Network FirewallNetwork Deny
V 2.0 Traffic DeniedSub RuleTraffic Denied by Network FirewallNetwork Deny
V 2.0 Network Connection DroppedSub RuleTraffic Denied by Network FirewallNetwork Deny
V 2.0 Network Session ClosedSub RuleTraffic Allowed by Network FirewallNetwork Allow

Mapping with LogRhythm Schema  

Device Key in Log MessageLogRhythm SchemaData Type
N/A<vmid>Text/String
N/A<vendorinfo>Text/String/Number
N/A<tag1>Text/String/Number
N/A<sip>Number/IP
N/A<dip>Number/IP
N/A<snatip>Text/String/Number/IP
N/A<dnatip>Text/String/Number/IP
N/A<policy>Text/String/Number
N/A<domainorigin>Number
N/A<login>Text/String/Number
N/A<domainimpacted>Text/String/Number
N/A<account>Text/String
N/A<sinterface>Text/String
N/A<dinterface>Text/String
N/A<session>Text/String/Number
N/A<sport>Text/String/Number
N/A<dport>Number
N/A<snatport>Number
N/A<dnatport>Number
N/A<protname>Text/String
N/A<tag2>Text/String
N/A<action>Text/String
N/A<bytesin>Number
N/A<bytesout>Number
N/A<seconds>Number
N/A<subject>Number/Text/String
N/A<reason>Text/String
N/A<packetsin>Number
N/A<packetsout>Number
N/A<object>Text/String
N/A<objecttype>Text/String
N/A<threatname>Text/String
N/A<threatid>Number
N/A<severity>Text/String
JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.