Change log for VELO_FIREWALL
| Date | Changes |
|---|---|
| 2026-02-12 | Enhancement:
- Added new Grok pattern to parse the `sdwan` type logs. - `event.idm.read_only_udm.metadata.description`: Newly mapped `description` raw log field with `event.idm.read_only_udm.metadata.description` UDM field. - `event.idm.read_only_udm.metadata.product_event_type`: Newly mapped `product_event_type` raw log field with `event.idm.read_only_udm.metadata.product_event_type` UDM field. - `event.idm.read_only_udm.additional.fields`: Newly mapped `cloud_software` raw log field with `event.idm.read_only_udm.additional.fields` UDM field, using the key "CLOUD_SOFTWARE". |
| 2024-10-10 | Enhancement:
- Mapped "action" field from log to "security_result.action_details". - If "action" is "Allow", then set "security_result.action as "ALLOW". |
| 2024-09-12 | Enhancement:
- Modified the Grok pattern to parse unparsed logs. |
| 2024-06-30 | - Newly created parser.
|