Change log for JUNIPER_MX
| Date | Changes |
|---|---|
| 2024-07-02 | Enhancement:
- Added new Grok patterns to parse a new pattern of SYSLOGS. |
| 2024-04-15 | Enhancement:
- Added new Grok patterns to handle a new pattern of SYSLOG logs. - Aligned "target.ip" and "target.asset.ip" mappings. - Aligned "target.hostname" and "target.asset.hostname" mappings. - Aligned "principal.ip" and "principal.asset.ip" mappings. - Aligned "principal.hostname" and "principal.asset.hostname" mappings. - When "metadata.event_type" is "GENERIC_EVENT", and "src_ip" and "dest_ip" is not empty, then set "metadata.event_type" to "NETWORK_CONNECTION". - When "metadata.event_type" is "GENERIC_EVENT", and "src_ip" is not empty, then set "metadata.event_type" to "STATUS_UPDATE". |
| 2023-11-26 | Enhancement:
- Mapped host sending logs to "intermediary.hostname" instead of "principal.hostname". - Parsed event_type "SSHD_LOGIN_FAILED" and mapped "metadata.event_type" to "USER_LOGIN". - Changed and mapped more appropriate "metadata.event_type' wherever possible. |