Created
November 20, 2014 19:35
-
-
Save clay584/5cca3f48113f0d193af4 to your computer and use it in GitHub Desktop.
logging into the future - syslog-ng entry (text file)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 2014-11-20T19:00:57-05:00 10.0.0.34 orl-asa-fp sf: [Primary Detection Engine (6c462a00-43ae-11e4-954c-a4aa6fe94c69)][Presidio Lab - Internet Access Policy] Connection Type: End, User: Unknown, Client: Chrome, Application Protocol: HTTP, Web App: Unknown, Access Control Rule Name: Malware Lookups | Monitor All, Access Control Rule Action: Allow, Access Control Rule Reasons: Unknown, URL Category: Unknown, URL Reputation: Risk unknown, URL: http://sn-cc-nbox.presidiolab.local:3000/lua/get_flow_data.lua?flow_key=352531341&_=1416504188744, Interface Ingress: outside, Interface Egress: inside, Security Zone Ingress: Outside, Security Zone Egress: Inside, Security Intelligence Matching IP: None, Security Intelligence Category: None, Client Version: 38.0.2125.111, Number of File Events: 0, Number of IPS Events: 0, TCP Flags: 0x0, NetBIOS Domain: (null), Initiator Packets: 5, Responder Packets: 5, Initiator Bytes: 778, Responder Bytes: 451, Context: unknown {TCP} 10.254.1.19:50609 -> 10.4.4.15:3000 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment