Parsers and Generated Fields

Tag Fields Created by Parser juniper-srx

  • #Cps.version

  • #Vendor

  • #ecs.version

  • #event.dataset

  • #event.kind

  • #event.module

  • #event.outcome

  • #observer.type

Fields Identified by Parser juniper-srx
Vendor FieldCPS FieldDescription
source.bytesclient.bytes 
source.ipclient.ip 
source.nat.ipclient.nat.ip 
source.nat.portclient.nat.port 
source.packetsclient.packets 
source.portclient.port 
Vendor.actionevent.action 
Vendor.reasonevent.reason  
Vendor.filenamefile.name  
Vendor.syslog.hostnamelog.syslog.hostname  
Vendor.syslog.msgidlog.syslog.msgid  
Vendor.syslog.procidlog.syslog.procid  
source.bytesnetwork.bytes 
client.packetsnetwork.packets 
Vendor.protocolnetwork.protocol  
destination.bytesserver.bytes 
destination.ipserver.ip 
destination.nat.ipserver.nat.ip 
destination.nat.portserver.nat.port 
destination.packetsserver.packets 
destination.portserver.port 
Vendor.usernamesource.user.name  
Vendor.objurl.path  
Tag Fields Created by Parser srx-syslog

  • #Cps.version

  • #Vendor

  • #ecs.version

  • #event.dataset

  • #event.kind

  • #event.module

  • #event.outcome

  • #observer.type

Fields Identified by Parser srx-syslog
Vendor FieldCPS FieldDescription
source.bytesclient.bytes 
source.ipclient.ip 
source.nat.ipclient.nat.ip 
source.nat.portclient.nat.port 
source.packetsclient.packets 
source.portclient.port 
Vendor.actionevent.action 
Vendor.reasonevent.reason 
Vendor.filenamefile.name 
Vendor.syslog.hostname;log.syslog.hostname 
Vendor.syslog.msgid;log.syslog.msgid 
Vendor.syslog.procid;log.syslog.procid 
source.bytesnetwork.bytes 
client.packetsnetwork.packets 
Vendor.protocolnetwork.protocol 
destination.bytesserver.bytes 
destination.ipserver.ip 
destination.nat.ipserver.nat.ip 
destination.nat.portserver.nat.port 
destination.packetsserver.packets 
destination.portserver.port 
Vendor.usernamesource.user.name 
Vendor.objurl.path