Parsers and Generated Fields
Tag Fields Created by Parser srx-syslog
#Cps.version
#Vendor
#ecs.version
#event.dataset
#event.kind
#event.module
#event.outcome
#observer.type
Fields Identified by Parser srx-syslog
| Source Field | LogScale Repository Field |
|---|---|
| source.bytes | client.bytes |
| source.ip | client.ip |
| source.nat.ip | client.nat.ip |
| source.nat.port | client.nat.port |
| source.packets | client.packets |
| source.port | client.port |
| Vendor.action | event.action |
| Vendor.reason | event.reason |
| Vendor.filename | file.name |
| Vendor.syslog.hostname | log.syslog.hostname |
| Vendor.syslog.msgid | log.syslog.msgid |
| Vendor.syslog.procid | log.syslog.procid |
| source.bytes | network.bytes |
| client.packets | network.packets |
| Vendor.protocol | network.protocol |
| destination.bytes | server.bytes |
| destination.ip | server.ip |
| destination.nat.ip | server.nat.ip |
| destination.nat.port | server.nat.port |
| destination.packets | server.packets |
| destination.port | server.port |
| Vendor.username | source.user.name |
| Vendor.obj | url.path |