firewall.barracuda
Introduction
The tags beginning with firewall.barracuda
identify events generated by Barracuda Networks.
Valid tags and data tablesÂ
The full tag must have 3 levels. The first two are fixed as firewall.barracuda
. The third level identifies the type of events sent.
These are the valid tags and corresponding data tables that will receive the parsers' data:
Product / Service | Tags | Data tables |
---|---|---|
Barracuda Firewall |
|
|
For more information, read more About Devo tags.
Table structure
These are the fields displayed in this table:
firewall.barracuda.audit
Field | Type | Source field name | Extra fields |
---|---|---|---|
eventdate |
| Â | Â |
machine |
| vmachine | Â |
serverdate |
| Â | Â |
operation |
| Â | Â |
type |
| Â | Â |
logType |
| Â | Â |
InputIF |
| Â | Â |
proto |
| Â | Â |
action |
| Â | Â |
srcIp |
| Â | Â |
srcPort |
| Â | Â |
dstIp |
| Â | Â |
dstPort |
| Â | Â |
dstService |
| Â | Â |
Status_code |
| Â | Â |
operationType |
| Â | Â |
srcIp2 |
| Â | Â |
srcPort2 |
| Â | Â |
dstIp2 |
| Â | Â |
dstPort2 |
| Â | Â |
OutputIF |
| Â | Â |
SCR_MAC |
| Â | Â |
duration |
| Â | Â |
inBytes |
| Â | Â |
inPkts |
| Â | Â |
outBytes |
| Â | Â |
outPkts |
| Â | Â |
totalBytes |
| Â | Â |
hostchain |
|  | ✓ |
tag |
|  | ✓ |
rawMessage |
| rawSource | ✓ |