Forum Discussion

securityxpert1122's avatar
securityxpert1122
Copper Contributor
Aug 11, 2022

Syslog Message parser

Hi All,

 

   I have below syslog message which need to be parsed. I tried to parse manually however, since its not being ingested as raw log so manually parsing does not work. Any help would be greatly appreciated regarding parsing below syslog message. Thanks. 

 

APPTRACK_SESSION_CREATE: AppTrack session created 192.168.1.3/24026->8.8.8.8/61793 icmp UNKNOWN UNKNOWN 141.115.128.112/48006->8.8.8.8/61793 Wan-Out-1 N/A 1 audit-untrust zone-wan untrust 380677 N/A N/A UNKNOWN abc.1 N/A N/A N/A N/A

 

 

 

analytics

Resources