Versions Compared

Old Version 21

changes.mady.by.user Juan Tomás Alonso Nieto

Saved on

compared with

New Version 22

changes.mady.by.user Juan Tomás Alonso Nieto

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Table of Contents
maxLevel2
typeflat

Introduction

The tags beginning with ap.cisco identify events generated by access point devices belonging to Cisco.

Valid tags and data tables 

The full tag must have 3 levels. The first two are fixed asap.cisco. The third level identifies the type of events sent.

These are the valid tags and corresponding data tables that will receive the parsers' data:

Product / Service

Tags

Data tables

Cisco Wireless LAN Controller

ap.cisco.wlc 

ap.cisco.wlc 

How is the data sent to Devo?

Logs generated by Cisco must be sent to the Devo platform via the Devo Relay to secure communication. See the required relay rule below:

  • Source port - Any available port

  • Target tag - ap.cisco.wlc

  • Sent without syslog tag -

No 3rd-party mechanism is used. No collector is needed.

Table structure

These are the fields displayed in this table:

Field

Type

Source field name

Extra fields

eventdate

timestamp

hostchain

 

string

machine

str

embFacility

vmachine

string

level

embLevel

str

string

vlevel

tag

syslogFacility

string

str

embFacility

apName

str

string

 

task

str

string

 

serverdate

str

string

 

facility

string

str

 

priority

int4

 

mnemonic

string

str

 

message

string

rawSource

string

str

 

rawMessage

str

 

hostchain

str

 

tag

str