Stay organized with collections
Save and categorize content based on your preferences.
Change log for ZSCALER_DNS
Date
Changes
2025-02-22
Enhancement:
- Mapped "event.category" and "category" to "additional.fields".
2025-01-24
Enhancement:
- Added support for JSON logs having internal field as "event".
2025-01-24
Enhancement:
- Added support for JSON logs having internal field as "event".
2024-10-23
Enhancement:
- Added support to parse unparsed JSON logs.
2024-05-28
Enhancement:
- Mapped "dns_reqtype" to "additional.fields".
2024-05-10
Enhancement:
- Mapped "dns_resp" to "event.idm.read_only_udm.network.dns.answers.data".
- Mapped "event1.durationms" to "network.session_duration.seconds".
- Mapped "event1.location" to "additional.fields".
- Mapped "event1.category" and "event1.respipcategory" to "sec_result.category_details".
2023-10-17
Enhancement -
- Written a Grok pattern to parse the log of CSV format.
- Dropped the logs that do not match any Grok pattern.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-04-01 UTC."],[[["The ZSCALER_DNS change log includes enhancements for mapping various fields to standardized locations, such as \"event.category\" and \"category\" to \"additional.fields\"."],["Support for parsing JSON logs with internal fields labeled as \"event\" has been added."],["The system now supports parsing previously unparsed JSON log data."],["Grok patterns have been implemented to handle CSV-formatted logs, and logs that don't match any patterns are now dropped."],["JSON format logs are now parsed, while encoded logs are being dropped."]]],[]]
