The following table contains event (EVT) codes and their corresponding message types.
|
Event Type |
SIEM Event ID |
Common Event Name |
|---|---|---|
|
Intermediate or In-Progress Flow |
EVT:001 |
Incremental Flow |
|
Normal End of Flow |
EVT:003 |
End of Flow |
|
Query Rule Alarm |
EVT:005 |
NetMon User Alarm |
|
Deep Packet Analytics Rule Alarm |
EVT:010 |
NetMon Lua Alarm |
|
NetMon Diagnostics |
EVT:100 |
|