Strata Logging Service
URL HTTPS Fields
Table of Contents
Expand All
|
Collapse All
Strata Logging Service Docs
-
-
- Forward Logs to a Syslog Server
- Forward Logs to an HTTPS Server
- Forward Logs to an Email Server
- Forward Logs to Amazon Security Lake
- Forward Logs to AWS S3 Bucket
- Forward Logs to Snowflake
- Create Log Filters
- Server Certificate Validation
- List of Trusted Certificates for Syslog and HTTPS Forwarding
- Log Forwarding Errors
- Forward Logs With Log Replay
URL HTTPS Fields
The following table identifies the URL field names that the Log Forwarding app
uses when you forward logs using the HTTPS log format.
HTTPS Name
|
Query Name
|
---|---|
Action
| |
Application
| |
ApplicationCategory
| |
ApplicationSubcategory
| |
CloudHostname
| |
CloudReportID
| |
ConfigVersion
| |
ContainerID
| |
ApplicationContainer
| |
ContentType
| |
ContentVersion
| |
RepeatCount
| |
CortexDataLakeTenantID
| |
DestinationDeviceCategory
| |
DestinationDeviceClass
| |
DestinationDeviceHost
| |
DestinationDeviceMac
| |
DestinationDeviceModel
| |
DestinationDeviceOS
| |
DestinationDeviceOSFamily
| |
DestinationDeviceOSVersion
| |
DestinationDeviceProfile
| |
DestinationDeviceVendor
| |
DestinationDynamicAddressGroup
| |
DestinationEDL
| |
DestinationAddress
| |
DestinationLocation
| |
DestinationPort
| |
DestinationUser
| |
DestinationUserDomain
| |
DestinationUserName
| |
DestinationUserUUID
| |
DestinationUUID
| |
DGHierarchyLevel1
| |
DGHierarchyLevel2
| |
DGHierarchyLevel3
| |
DGHierarchyLevel4
| |
DirectionOfAttack
| |
DynamicUserGroupName
| |
EndpointSerialNumber
| |
FileURL
| |
FlowType
| |
FromZone
| |
HostID
| |
HTTP2Connection
| |
HTTPHeaders
| |
HTTPMethod
| |
InboundInterface
| |
InboundInterfaceDetailsPort
| |
InboundInterfaceDetailsSlot
| |
InboundInterfaceDetailsType
| |
InboundInterfaceDetailsUnit
| |
InlineMLVerdict
| |
CaptivePortal
| |
IsClienttoServer
| |
IsContainer
| |
IsDecryptMirror
| |
IsDecrypted
| |
IsDuplicateLog
| |
IsEncrypted
| |
LogExported
| |
LogForwarded
| |
IsIPV6
| |
IsMptcpOn
| |
NAT
| |
IsNonStandardDestinationPort
| |
IsPacketCapture
| |
IsPhishing
| |
IsPrismaNetwork
| |
IsPrismaUsers
| |
IsProxy
| |
IsReconExcluded
| |
IsSaaSApplication
| |
IsServertoClient
| |
IsSourceXForwarded
| |
IsSystemReturn
| |
IsTransaction
| |
IsTunnelInspected
| |
IsURLDenied
| |
K8SClusterID
| |
Location
| |
LogSetting
| |
LogSource
| |
LogSourceGroupID
| |
DeviceSN
| |
DeviceName
| |
LogSourceTimeZoneOffset
| |
TimeReceived
| |
LogType
| |
IMEI
| |
NATDestination
| |
NATDestinationPort
| |
NATSource
| |
NATSourcePort
| |
NonStandardDestinationPort
| |
NSSAINetworkSliceType
| |
OutboundInterface
| |
OutboundInterfaceDetailsPort
| |
OutboundInterfaceDetailsSlot
| |
OutboundInterfaceDetailsType
| |
OutboundInterfaceDetailsUnit
| |
PanoramaSN
| |
ParentSessionID
| |
ParentStarttime
| |
Packet
| |
PacketID
| |
PlatformType
| |
ContainerName
| |
ContainerNameSpace
| |
Protocol
| |
Referer
| |
HTTPRefererFQDN
| |
HTTPRefererPort
| |
HTTPRefererProtocol
| |
HTTPRefererURLPath
| |
ApplicationRisk
| |
Rule
| |
RuleUUID
| |
SanctionedStateOfApp
| |
SequenceNo
| |
SessionID
| |
Severity
| |
SigFlags
| |
SourceDeviceCategory
| |
SourceDeviceClass
| |
SourceDeviceHost
| |
SourceDeviceMac
| |
SourceDeviceModel
| |
SourceDeviceOS
| |
SourceDeviceOSFamily
| |
SourceDeviceOSVersion
| |
SourceDeviceProfile
| |
SourceDeviceVendor
| |
SourceDynamicAddressGroup
| |
SourceEDL
| |
SourceAddress
| |
SourceLocation
| |
SourcePort
| |
SourceUser
| |
SourceUserDomain
| |
SourceUserName
| |
SourceUserUUID
| |
SourceUUID
| |
Subtype
| |
ApplicationTechnology
| |
TimeGenerated
| |
TimeGeneratedHighResolution
| |
ToZone
| |
Tunnel
| |
TunneledApplication
| |
IMSI
| |
URL
| |
URLCategory
| |
URLCategoryList
| |
URLDomain
| |
URLCounter
| |
UserAgent
| |
Users
| |
VendorName
| |
VendorSeverity
| |
VirtualLocation
| |
VirtualSystemID
| |
VirtualSystemName
| |
X-Forwarded-For
| |
X-Forwarded-ForIP
|