Change log for AWS_ELB
| Date | Changes |
|---|---|
| 2025-02-19 | Enhancement:
- Added support for new format of syslog logs. - Mapped "sec_status" to "security_result.action". - Mapped "grp_identifiers" to "principal.user.group_identifiers". - Mapped "http_version" to "network.application_protocol_version". - Mapped "useragent" to "network.http.user_agent". - Mapped "severity_level" to "security_result.severity". - Mapped "pid" to "principal.process.pid". - Mapped "port" to "principal.port". - Mapped "desc" to "metadata.description". - Mapped "int_host" to "intermediary.hostname". - Mapped "int_port" to "intermediary.port". - Mapped "tid" to "additional.fields". - Added a Grok pattern to parse "sent_bytes". |
| 2024-11-12 | Enhancement:
- Added support to parse new format of syslog logs. |
| 2024-03-22 | Enhancement:
- Added new Grok pattern to support new pattern of JSON logs. - Added support for CEF pattern logs. - Mapped "dst_ip" to "target.ip". - Mapped "dst_port" to "target.port". - Mapped "sip" to "principal.ip". - Mapped "request_processing_time", "target_processing_time", "siteid", "fileId", and "response_processing_time" to "security_result.detection.fields". - Aligned mappings for "principal.ip" and "principal.asset.ip". - Aligned mappings for "target.ip" and "target.asset.ip". - Aligned mappings for "target.hostname" and "target.asset.hostname". - Mapped "cipher" to "network.tls.cipher". - Mapped "version" to "network.tls.version". - Mapped "Customer" to "principal.user.user_display_name". |
| 2022-05-27 | Enhancement - Modified the value stored in metadata.product_name to 'AWS Elastic Load Balancer'.
|