Closed ThoZed closed 5 years ago
Please provide following information
msg_id: 3000-0151
sample of log message: Devicedummy (2019-08-07T07:07:07) firewall: msg_id="3000-0151" Allow Firebox 11-WAN01 udp 58.87.11.63 44.44.44.44 44170 123 geo_dst="FRA" duration="30" sent_bytes="76" rcvd_bytes="76" (Any From Firebox-00) Devicedummy (2019-08-07T07:07:07) firewall: msg_id="3000-0151" Allow Firebox 11-WAN01 udp 58.87.11.63 44.44.44.44 43993 123 duration="30" sent_bytes="76" rcvd_bytes="76" (Any From Firebox-00) Devicedummy (2019-08-07T07:07:07) firewall: msg_id="3000-0151" Allow Firebox 99-dmz34 icmp 58.87.11.63 44.44.44.44 duration="31" sent_bytes="48" rcvd_bytes="48" (Any From Firebox-00)
Graylog Version: 3.0.2
extractor rule definition(optional)
Please provide following information
msg_id: 3000-0151
sample of log message: Devicedummy (2019-08-07T07:07:07) firewall: msg_id="3000-0151" Allow Firebox 11-WAN01 udp 58.87.11.63 44.44.44.44 44170 123 geo_dst="FRA" duration="30" sent_bytes="76" rcvd_bytes="76" (Any From Firebox-00) Devicedummy (2019-08-07T07:07:07) firewall: msg_id="3000-0151" Allow Firebox 11-WAN01 udp 58.87.11.63 44.44.44.44 43993 123 duration="30" sent_bytes="76" rcvd_bytes="76" (Any From Firebox-00) Devicedummy (2019-08-07T07:07:07) firewall: msg_id="3000-0151" Allow Firebox 99-dmz34 icmp 58.87.11.63 44.44.44.44 duration="31" sent_bytes="48" rcvd_bytes="48" (Any From Firebox-00)
Graylog Version: 3.0.2
extractor rule definition(optional)