Parsers and Generated Fields
Tag Fields Created by Parser cisco-ios
#Cps.version
#Vendor
#ecs.version
#event.dataset
#event.kind
#event.module
#event.outcome
#observer.type
Fields Identified by Parser cisco-ios
| Source Field | CPS Field |
|---|---|
| destination.address | destination.ip |
| Vendor.eventAction | event.action |
| Vendor.ios.message_count | event.sequence |
| Vendor.ios.sequence | event.sequence |
| source.packets | network.packets |
| source.address | source.ip |
| user.name | source.user.name |
Tag Fields Created by Parser syslog-utc
#Cps.version
#Vendor
#ecs.version
#event.dataset
#event.kind
#event.module
#event.outcome
#observer.type
Fields Identified by Parser syslog-utc
| Source Field | CPS Field |
|---|---|
| 1.0.0 | Cps.version |
| destination.address | destination.ip |
| Vendor.ios.message_count; | event.sequence |
| Vendor.ios.sequence; | event.sequence |
| source.packets | network.packets |
| source.address | source.ip |
| user.name | source.user.name |