Skip to content

Sophos

Constructor : Sophos

Device : UTM

Theoretical injector performance

11638 EPS

Log format : structured

Sample messages :

ulogd[4754]: id= sub= fwrule= srcmac= srcip= tos= tcpflags=

ulogd[4754]: id= sub= fwrule= dstmac= proto= srcport=

ulogd[4520]: id= sub= fwrule= srcip= tos=

Constructor field LMC field
[name] [alarm][name]
[severity] [alarm][sev]
[fwrule] [rule][id]
[action] [action]
[srcip] [init][host][ip]
[srcport] [init][host][port]
[initf] [init][host][if]
[srcmac] [init][host][mac]
[dstip] [target][host][ip]
[dstport] [target][host][port]
[outitf] [target][host][if]
[dstmac] [target][host][mac]
[proto] [app][proto][num]
[sys] [sophos][sys]
[sub] [sophos][sub]
[length] [sophos][length]
[tos] [sophos][tos]
[prec] [sophos][prec]
[ttl] [sophos][ttl]
[tcpflags] [sophos][tcpflags]

Test Unit List :

unit_packetfilter_accept.json