Link Search Menu Expand Document Documentation Menu
文档

NetFlow

netflow 日志类型记录了集成测试期间使用的 NetFlow 事件。

以下代码片段包含此日志类型的所有 raw_fieldecs 映射:

"mappings": [
    {
      "raw_field":"netflow.source_ipv4_address",
      "ecs":"source.ip"
    },
    {
      "raw_field":"netflow.source_transport_port",
      "ecs":"source.port"
    },
    {
      "raw_field":"netflow.destination_ipv4_address",
      "ecs":"destination.ip"
    },
    {
      "raw_field":"netflow.destination_transport_port",
      "ecs":"destination.port"
    },
    {
      "raw_field":"http.request.method",
      "ecs":"http.request.method"
    },
    {
      "raw_field":"http.response.status_code",
      "ecs":"http.response.status_code"
    },
    {
      "raw_field":"timestamp",
      "ecs":"timestamp"
    }
  ]
剩余 350 字符

有问题?

想做贡献?