Page Comparison

This group includes tags that start with the level firewall. These tags identify data generated by firewall services.

Company Product / service Valid tags

Barracuda firewall

firewall.barracuda.audit

Check Point Firewall

firewall.checkpoint.fw

Check more info about these parsers

Check Point GAiA

firewall.checkpoint.gaia ^+info

Check more info about these parsers

Check Point OPSEC LEA

firewall.checkpoint.lea ^+info

Check more info about these parsers

Check Point Log Exporter

firewall.checkpoint.log_exporter ^+info

Check more info about these parsers

Cisco ASA

Note
This technology is also supported in CEF via syslog.^+info

firewall.cisco.asa ^+info

Check more info about these parsers

Cisco Firepower Management Center

firewall.cisco.fmc ^+info

Check more info about these parsers

Cisco Firepower Threat Defense

firewall.cisco.ftd ^+info

Check more info about these parsers

Cisco Firewall Services Module

Note
This technology is also supported in CEF via syslog.^+info

firewall.cisco.fwsm ^+info

Check more info about these parsers

Cisco PIX

firewall.cisco.pix ^+info

Check more info about these parsers

Fortinet FortiGate (FortiOS Traffic, Security, and Event logs)

Note
This technology is also supported in CEF via syslog.^+info

firewall.fortinet.anomaly.anomaly ^+info
firewall.fortinet.event.admin ^+info
firewall.fortinet.event.config ^+info
firewall.fortinet.event.dhcp ^+info
firewall.fortinet.event.dns ^+info
firewall.fortinet.event.ha ^+info
firewall.fortinet.event.his-performance ^+info
firewall.fortinet.event.ipsec ^+info
firewall.fortinet.event.pattern ^+info
firewall.fortinet.event.perf.historical ^+info
firewall.fortinet.event.sslvpn-session ^+info
firewall.fortinet.event.sslvpn-user ^+info
firewall.fortinet.event.system ^+info
firewall.fortinet.event.user ^+info
firewall.fortinet.event.vpn ^+info
firewall.fortinet.event.wireless ^+info
firewall.fortinet.ips.anomaly ^+info
firewall.fortinet.traffic.forward ^+info
firewall.fortinet.traffic.local ^+info
firewall.fortinet.traffic.multicast ^+info
firewall.fortinet.traffic.other ^+info
firewall.fortinet.traffic.violation ^+info
firewall.fortinet.utm.app-ctrl ^+info
firewall.fortinet.utm.emailfilter ^+info
firewall.fortinet.utm.ips ^+info
firewall.fortinet.utm.virus ^+info
firewall.fortinet.utm.webfilter ^+info

Image Removed

F5 Networks BIG-IP ASM

firewall.f5.asm

Note
This parser is deprecated.

Check more info about these parsers

Huawei firewall

firewall.huawei.ngfw.aaa ^+info
firewall.huawei.ngfw.cm ^+info
firewall.huawei.ngfw.fw-log ^+info
firewall.huawei.ngfw.ifnet ^+info
firewall.huawei.ngfw.ifpdt ^+info
firewall.huawei.ngfw.info ^+info
firewall.huawei.ngfw.module ^+info
firewall.huawei.ngfw.mstp ^+info
firewall.huawei.ngfw.ntp ^+info
firewall.huawei.ngfw.sec ^+info
firewall.huawei.ngfw.shell ^+info
firewall.huawei.ngfw.spr ^+info
firewall.huawei.ngfw.ssh^+info

Check more info about these parsers

Juniper Integrated Services Gateway

firewall.juniper.isg.system ^+info
firewall.juniper.isg.traffic ^+info
firewall.juniper.srx.idp ^+info
firewall.juniper.srx.probe ^+info
firewall.juniper.srx.system ^+info
firewall.juniper.srx.traffic ^+info
firewall.juniper.srx.utm ^+info
firewall.juniper.ssg.system ^+info
firewall.juniper.ssg.traffic ^+info

Check more info about these parsers

Juniper Network & Security Manager

Note
This technology is also supported in CEF via syslog.^+info

firewall.juniper.nsm.traffic^+info

Check more info about these parsers

Juniper SRX-series Firewalls

firewall.juniper.srx.idp ⁺^infoidp
firewall.juniper.srx.probe ^+info
firewall.juniper.srx.system ^+info
firewall.juniper.srx.traffic ^+info
firewall.juniper.srx.utm^+info

Check more info about these parsers

Juniper Secure Services Gateway

firewall.juniper.ssg.system ^+info
firewall.juniper.ssg.traffic ^+info

Check more info about these parsers

Cisco Meraki Firewall

firewall.meraki.events
firewall.meraki.flows
firewall.meraki.idsAlerts
firewall.meraki.urls

Linux kernel firewall - iptables

firewall.iptables.std

Microsoft Windows Firewall

firewall.windows.stdout^+info

Check more info about these parsers

Palo Alto Networks Firewall

firewall.paloalto.config ^+info
firewall.paloalto.system ^+info
firewall.paloalto.threat ^+info
firewall.paloalto.traffic ^+info
firewall.paloalto.correlation
firewall.paloalto.hipmatch ^+info
firewall.paloalto.url ^+info
firewall.paloalto.userid ^+info

Check more info about these parsers

pfSense Firewall

firewall.pfsense.everything ^+info
firewall.pfsense.filterlog ^+info
firewall.pfsense.firewall ^+info
firewall.pfsense.system ^+info

Check more info about these parsers

SonicWall Firewall (SonicOS)

firewall.sonicwall.general ^+info
firewall.sonicwall.genv58 ^+info

Check more info about these parsers

Sophos UTM

Sophos XG Firewall

firewall.sophos.general.system ^+info
firewall.sophos.securemail.smtp ^+info
firewall.sophos.securenet.ips ^+info
firewall.sophos.securenet.packetfilter ^+info
firewall.sophos.securenet.vpn ^+info
firewall.sophos.secureweb.eplog ^+info
firewall.sophos.secureweb.http ^+info
firewall.sophos.system.auth ^+info
firewall.sophos.system.confd ^+info
firewall.sophos.system.eplog ^+info
firewall.sophos.system.epsecd ^+info
firewall.sophos.system.ha ^+info
firewall.sophos.system.loadbalancing ^+info
firewall.sophos.system.red ^+info
firewall.sophos.system.up2date ^+info
firewall.sophos.system.wifi ^+info
firewall.sophos.xgfirewall.contentfiltering ^+info
firewall.sophos.xgfirewall.fw ^+info
firewall.sophos.xgfirewall.general ^+info
firewall.sophos.xgfirewall.wirelessprotection ^+info
firewall.sophos.xgfirewall.contentfiltering ^+info
firewall.sophos.xgfirewall.fw ^+info
firewall.sophos.xgfirewall.general ^+info
firewall.sophos.xgfirewall.wirelessprotection ^+info

Check more info about these parsers

StoneGate Firewall - Forcepoint NGFW

firewall.stonegate.ips ^+info
firewall.stonegate.leef ^+info
firewall.stonegate.xml ^+info

Check more info about these parsers

WatchGuard Security

firewall.watchguard.traffic

...

Versions Compared

Old Version 23

New Version Current

Key