Parsers and Generated Fields

Tag Fields Created by Parser infoblox-nios

  • #Cps.version

  • #Vendor

  • #ecs.version

  • #event.dataset

  • #event.kind

  • #event.module

  • #event.outcome

  • #observer.type

Fields Identified by Parser infoblox-nios
Vendor FieldCPS FieldDescription
`dns.resolved_ip[]`Array__repeatMessage
`event.category[]`ArrayVendor.service_name, event.action
`event.type[]`ArrayVendor.service_name, event.action
`host.ip[]`Arrayhost.domain
`server.domain`Copiedserver.address
`server.ip`Copiedserver.address
`transaction.id`CopiedVendor.dhcp.trans_id
`client.domain`Extractedmessage, client.address
`client.ip`Extractedmessage, client.address
`client.mac`Extractedmessage
`client.port`Extractedmessage
`dns.answers.type`Extractedmessage
`dns.question.class`Extractedmessage
`dns.question.name`Extractedmessage
`dns.question.response_code`Extractedmessage
`dns.question.type`Extractedmessage
`event.action`Extractedmessage
`host.domain`Extracted@rawstring
`interface.name`Extractedmessage
`log.syslog.priority`Extracted@rawstring
`log.syslog.timestamp`Extracted@rawstring
`message`Extracted@rawstring
`network.name`Extractedmessage
`network.transport`Extractedmessage
`process.id`Extracted@rawstring
`server.address`Extractedmessage
`server.mac`Extractedmessage
`server.port`Extractedmessage
`user.name`Extracted__userName
`@timestamp`Parsedlog.syslog.timestamp
`dns.answers[].class`Parsed__repeatMessage
`dns.answers[].data`Parsed__repeatMessage
`dns.answers[].name`Parsed__repeatMessage
`dns.answers[].ttl`Parsed__repeatMessage
`dns.answers[].type`Parsed__repeatMessage
`network.type`Setclient.address, server.address
`ecs.version`StaticNone
`event.dataset`StaticVendor.service_name
`event.kind`StaticNone
`event.module`StaticNone
`event.outcome`Staticevent.action
client.addressclient.ip 
server.addressserver.ip