Versions Compared

Old Version 1

changes.mady.by.user Juan Tomás Alonso Nieto

Saved on

compared with

New Version Current

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Table of Contents
maxLevel2
minLevel2
typeflat

Introduction

The tags beginning with cef0.mcafee identify events in CEF format generated by McAfee.

Tag structure

Events in CEF format don't have a specific tag structure, as explained in Technologies supported in CEF syslog format. They are always sent to a table with the structure cef0.deviceVendor.deviceProduct.

In this case, the valid data tables are:

Tags

Data tables

cef0.mcafee.dataExchangeLayer

cef0.mcafee.dataExchangeLayer

cef0.mcafee.dataLossPrevention

cef0.mcafee.dataLossPrevention

cef0.mcafee.databaseSecurity

cef0.mcafee.databaseSecurity

cef0.mcafee.dlpMonitor

cef0.mcafee.dlpMonitor

cef0.mcafee.driveEncryption

cef0.mcafee.driveEncryption

cef0.mcafee.emailGateway

cef0.mcafee.emailGateway

cef0.mcafee.endpointSecurity

cef0.mcafee.endpointSecurity

cef0.mcafee.epolicyOrchestrator

cef0.mcafee.epolicyOrchestrator

cef0.mcafee.firewall

cef0.mcafee.firewall

cef0.mcafee.hostIntrusionPrevention

cef0.mcafee.hostIntrusionPrevention

cef0.mcafee.mvisionCloud

cef0.mcafee.mvisionCloud

cef0.mcafee.secureInternetGateway

cef0.mcafee.secureInternetGateway

cef0.mcafee.siteadvisorEnterprise

cef0.mcafee.siteadvisorEnterprise

cef0.mcafee.solidcore

cef0.mcafee.solidcore

cef0.mcafee.virusscan

cef0.mcafee.virusscan

cef0.mcafee.webGateway

cef0.mcafee.webGateway

How is the data sent to Devo?

Learn more about CEF syslog format and how Devo tags these events in Technologies supported in CEF syslog format.