Scribd
Upload
32 views2 pages

2

Uploaded by

6158523272
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
32 views2 pages

2

Uploaded by

6158523272
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 2

{"fields":[{"name":"_raw"},{"name":"src_ip"},{"name":"_time"},

{"name":"generation_time"},{"name":"alert_time"},{"name":"level"},
{"name":"severity"},{"name":"alert_msg"},{"name":"message"}],"rows":
[["{\"localip\":\"10.1.127.14\",\"datasource\":\"/tpsys/syslog/
syslog.log\",\"severity\":\"WARNING\",\"alert_msg\":\"-DevIP=12.100.252.37; -
User=Wguan2014-IPAddr=10.1.127.1; Command undo terminal trapping in view shell
failed to be matched.\",\"alert_time\":\"2023-11-24 14:23:16\",\"raw_data\":\"2023-
11-24T14:23:16.274495+08:00,12.100.252.37,<188>Nov 24 14:23:16 2023 FSC-SH-IPCC-
3S5130-22U-L3-07 %%10SHELL/4/SHELL_CMD_MATCHFAIL: -DevIP=12.100.252.37; -
User=Wguan2014-IPAddr=10.1.127.1; Command undo terminal trapping in view shell
failed to be matched.\\n\",\"agent_id\":\"b95dfc51-8279-4f9c-93cb-
29b11901f9c5\",\"core\":\"3.10.0-1160.21.1.el7.x86_64\",\"alert_group\":\"10SHELL/
4/
SHELL_CMD_MATCHFAIL\",\"src_ip\":\"12.100.252.37\",\"facility\":\"LOCAL7\",\"proc_i
d\":\"\",\"alert_hostname\":\"\",\"time_diff\":\"0s\",\"osinfo\":\"GNU/Linux-Linux-
amd64\",\"received_time\":\"2023-11-24
14:23:16\"}","12.100.252.37",1700806996000,null,"Nov 24 14:23:16
2023",null,"WARNING","-DevIP=12.100.252.37; -User=Wguan2014-IPAddr=10.1.127.1;
Command undo terminal trapping in view shell failed to be matched.",null],
["{\"core\":\"3.10.0-
1160.21.1.el7.x86_64\",\"severity\":\"WARNING\",\"agent_id\":\"b95dfc51-8279-4f9c-
93cb-29b11901f9c5\",\"osinfo\":\"GNU/Linux-Linux-amd64\",\"alert_msg\":\"-
DevIP=12.100.252.37; -User=Wguan2014-IPAddr=10.1.127.1; Command undo terminal
logging in view shell failed to be
matched.\",\"alert_hostname\":\"\",\"received_time\":\"2023-11-24
14:22:46\",\"raw_data\":\"2023-11-24T14:22:46.325516+08:00,12.100.252.37,<188>Nov
24 14:22:46 2023 FSC-SH-IPCC-3S5130-22U-L3-07 %%10SHELL/4/SHELL_CMD_MATCHFAIL: -
DevIP=12.100.252.37; -User=Wguan2014-IPAddr=10.1.127.1; Command undo terminal
logging in view shell failed to be matched.\\
n\",\"facility\":\"LOCAL7\",\"alert_group\":\"10SHELL/4/
SHELL_CMD_MATCHFAIL\",\"alert_time\":\"2023-11-24
14:22:46\",\"localip\":\"10.1.127.14\",\"datasource\":\"/tpsys/syslog/
syslog.log\",\"time_diff\":\"0s\",\"proc_id\":\"\",\"src_ip\":\"12.100.252.37\"}","
12.100.252.37",1700806966000,null,"Nov 24 14:22:46 2023",null,"WARNING","-
DevIP=12.100.252.37; -User=Wguan2014-IPAddr=10.1.127.1; Command undo terminal
logging in view shell failed to be matched.",null],
["{\"alert_hostname\":\"\",\"datasource\":\"/tpsys/syslog/
syslog.log\",\"alert_group\":\"10SHELL/4/SHELL_CMD_MATCHFAIL\",\"alert_msg\":\"-
DevIP=12.100.252.37; -User=Wguan2014-IPAddr=10.1.127.1; Command undo terminal
trapping in view shell failed to be
matched.\",\"time_diff\":\"0s\",\"localip\":\"10.1.127.14\",\"agent_id\":\"b95dfc51
-8279-4f9c-93cb-29b11901f9c5\",\"core\":\"3.10.0-
1160.21.1.el7.x86_64\",\"osinfo\":\"GNU/Linux-Linux-
amd64\",\"proc_id\":\"\",\"facility\":\"LOCAL7\",\"alert_time\":\"2023-11-24
14:21:21\",\"severity\":\"WARNING\",\"raw_data\":\"2023-11-
24T14:21:21.227823+08:00,12.100.252.37,<188>Nov 24 14:21:21 2023 FSC-SH-IPCC-
3S5130-22U-L3-07 %%10SHELL/4/SHELL_CMD_MATCHFAIL: -DevIP=12.100.252.37; -
User=Wguan2014-IPAddr=10.1.127.1; Command undo terminal trapping in view shell
failed to be matched.\\n\",\"received_time\":\"2023-11-24
14:21:21\",\"src_ip\":\"12.100.252.37\"}","12.100.252.37",1700806881000,null,"Nov
24 14:21:21 2023",null,"WARNING","-DevIP=12.100.252.37; -User=Wguan2014-
IPAddr=10.1.127.1; Command undo terminal trapping in view shell failed to be
matched.",null],["{\"raw_data\":\"2023-11-
24T14:20:51.223524+08:00,12.100.252.37,<188>Nov 24 14:20:51 2023 FSC-SH-IPCC-
3S5130-22U-L3-07 %%10SHELL/4/SHELL_CMD_MATCHFAIL: -DevIP=12.100.252.37; -
User=Wguan2014-IPAddr=10.1.127.1; Command undo terminal logging in view shell
failed to be matched.\\n\",\"alert_hostname\":\"\",\"received_time\":\"2023-11-24
14:20:51\",\"agent_id\":\"b95dfc51-8279-4f9c-93cb-29b11901f9c5\",\"core\":\"3.10.0-
1160.21.1.el7.x86_64\",\"alert_time\":\"2023-11-24
14:20:51\",\"src_ip\":\"12.100.252.37\",\"osinfo\":\"GNU/Linux-Linux-
amd64\",\"datasource\":\"/tpsys/syslog/
syslog.log\",\"facility\":\"LOCAL7\",\"severity\":\"WARNING\",\"proc_id\":\"\",\"al
ert_group\":\"10SHELL/4/
SHELL_CMD_MATCHFAIL\",\"localip\":\"10.1.127.14\",\"alert_msg\":\"-
DevIP=12.100.252.37; -User=Wguan2014-IPAddr=10.1.127.1; Command undo terminal
logging in view shell failed to be
matched.\",\"time_diff\":\"0s\"}","12.100.252.37",1700806851000,null,"Nov 24
14:20:51 2023",null,"WARNING","-DevIP=12.100.252.37; -User=Wguan2014-
IPAddr=10.1.127.1; Command undo terminal logging in view shell failed to be
matched.",null],["{\"localip\":\"10.1.127.14\",\"datasource\":\"/tpsys/syslog/
syslog.log\",\"alert_group\":\"10SHELL/4/
SHELL_CMD_MATCHFAIL\",\"alert_hostname\":\"\",\"time_diff\":\"0s\",\"facility\":\"L
OCAL7\",\"agent_id\":\"b95dfc51-8279-4f9c-93cb-29b11901f9c5\",\"core\":\"3.10.0-
1160.21.1.el7.x86_64\",\"proc_id\":\"\",\"received_time\":\"2023-11-24
00:10:11\",\"src_ip\":\"12.100.252.37\",\"raw_data\":\"2023-11-
24T00:10:11.536779+08:00,12.100.252.37,<188>Nov 24 00:10:11 2023 FSC-SH-IPCC-
3S5130-22U-L3-07 %%10SHELL/4/SHELL_CMD_MATCHFAIL: -DevIP=12.100.252.37; -
User=Wguan2014-IPAddr=10.1.127.6; Command terminal length 0 in view shell failed to
be matched.\\n\",\"osinfo\":\"GNU/Linux-Linux-amd64\",\"alert_time\":\"2023-11-24
00:10:11\",\"severity\":\"WARNING\",\"alert_msg\":\"-DevIP=12.100.252.37; -
User=Wguan2014-IPAddr=10.1.127.6; Command terminal length 0 in view shell failed to
be matched.\"}","12.100.252.37",1700755811000,null,"Nov 24 00:10:11
2023",null,"WARNING","-DevIP=12.100.252.37; -User=Wguan2014-IPAddr=10.1.127.6;
Command terminal length 0 in view shell failed to be matched.",null],
["{\"facility\":\"LOCAL7\",\"received_time\":\"2023-11-23
08:27:56\",\"core\":\"3.10.0-1160.21.1.el7.x86_64\",\"datasource\":\"/tpsys/
syslog/syslog.log\",\"alert_hostname\":\"\",\"alert_time\":\"2023-11-23
08:27:56\",\"time_diff\":\"0s\",\"severity\":\"WARNING\",\"src_ip\":\"12.100.252.37
\",\"localip\":\"10.1.127.14\",\"osinfo\":\"GNU/Linux-Linux-
amd64\",\"proc_id\":\"\",\"raw_data\":\"2023-11-
23T08:27:56.975669+08:00,12.100.252.37,<188>Nov 23 08:27:56 2023 FSC-SH-IPCC-
3S5130-22U-L3-07 %%10DRVPLAT/4/SOFTCAR DROP: -DevIP=12.100.252.37;
PktType=UKNOWN_SMAC, SrcMAC=94c6-91ba-20a8, Dropped from
interface=GigabitEthernet1/0/5 at Stage=0, StageCnt=1, TotalCnt=1,
MaxRateInterface=GigabitEthernet1/0/5.\\n\",\"agent_id\":\"b95dfc51-8279-4f9c-93cb-
29b11901f9c5\"}","12.100.252.37",1700699276000,null,"Nov 23 08:27:56
2023",null,"WARNING",null,null],["{\"received_time\":\"2023-11-18
21:04:17\",\"src_ip\":\"12.100.252.37\",\"core\":\"3.10.0-
1160.21.1.el7.x86_64\",\"osinfo\":\"GNU/Linux-Linux-amd64\",\"alert_time\":\"2023-
11-18 21:04:17\",\"raw_data\":\"2023-11-
18T21:04:17.775443+08:00,12.100.252.37,<188>Nov 18 21:04:17 2023 FSC-SH-IPCC-
3S5130-22U-L3-07 %%10DRVPLAT/4/SOFTCAR DROP: -DevIP=12.100.252.37;
PktType=UKNOWN_SMAC, SrcMAC=94c6-91ba-208d, Dropped from
interface=GigabitEthernet1/0/15 at Stage=0, StageCnt=1, TotalCnt=1,
MaxRateInterface=GigabitEthernet1/0/15.\\n\",\"agent_id\":\"b95dfc51-8279-4f9c-
93cb-
29b11901f9c5\",\"localip\":\"10.1.127.14\",\"facility\":\"LOCAL7\",\"severity\":\"W
ARNING\",\"alert_hostname\":\"\",\"time_diff\":\"0s\",\"datasource\":\"/tpsys/
syslog/syslog.log\",\"proc_id\":\"\"}","12.100.252.37",1700312657000,null,"Nov 18
21:04:17 2023",null,"WARNING",null,null]]}

You might also like