feat:adapt to percent log structure
This commit is contained in:
wangchengcheng
134
properties/session_record_mapping_table.properties
Normal file
134
properties/session_record_mapping_table.properties
Normal file
@@ -0,0 +1,134 @@
|
||||
recv_time=common_recv_time
|
||||
log_id=common_log_id
|
||||
start_timestamp_ms=common_start_timestamp_ms
|
||||
end_timestamp_ms=common_end_timestamp_ms
|
||||
duration_ms=common_con_duration_ms
|
||||
processing_time=common_processing_time
|
||||
device_id=common_device_id
|
||||
data_center=common_data_center
|
||||
sled_ip=common_sled_ip
|
||||
device_tag=common_device_tag
|
||||
client_ip=common_client_ip
|
||||
client_port=common_client_port
|
||||
client_asn=common_client_asn
|
||||
subscriber_id=common_subscriber_id
|
||||
imei=common_imei
|
||||
imsi=common_imsi
|
||||
phone_number=common_phone_number
|
||||
server_ip=common_server_ip
|
||||
server_port=common_server_port
|
||||
server_asn=common_server_asn
|
||||
address_type=common_address_type
|
||||
out_link_id=common_egress_link_id
|
||||
in_link_id=common_ingress_link_id
|
||||
client_geolocation=common_client_location
|
||||
server_geolocation=common_server_location
|
||||
app=common_app_label
|
||||
ip_protocol=common_l4_protocol
|
||||
sent_pkts=common_c2s_pkt_num
|
||||
received_pkts=common_s2c_pkt_num
|
||||
sent_bytes=common_c2s_byte_num
|
||||
received_bytes=common_s2c_byte_num
|
||||
tcp_client_isn=common_tcp_client_isn
|
||||
tcp_server_isn=common_tcp_server_isn
|
||||
decoded_as=common_schema_type
|
||||
session_id=common_stream_trace_id
|
||||
http_url=http_url
|
||||
http_host=http_host
|
||||
http_proxy_flag=http_proxy_flag
|
||||
http_sequence=http_sequence
|
||||
http_cookie=http_cookie
|
||||
http_referer=http_referer
|
||||
http_user_agent=http_user_agent
|
||||
http_request_content_length=http_request_content_length
|
||||
http_request_content_type=http_request_content_type
|
||||
http_response_content_length=http_response_content_length
|
||||
http_response_content_type=http_response_content_type
|
||||
http_set_cookie=http_set_cookie
|
||||
http_version=http_version
|
||||
mail_protocol_type=mail_protocol_type
|
||||
mail_account=mail_account
|
||||
mail_password=mail_passwd
|
||||
mail_from_cmd=mail_from_cmd
|
||||
mail_to_cmd=mail_to_cmd
|
||||
mail_from=mail_from
|
||||
mail_to=mail_to
|
||||
mail_cc=mail_cc
|
||||
mail_bcc=mail_bcc
|
||||
mail_subject=mail_subject
|
||||
mail_subject_charset=mail_subject_charset
|
||||
mail_attachment_name=mail_attachment_name
|
||||
mail_attachment_name_charset=mail_attachment_name_charset
|
||||
mail_eml_file=mail_eml_file
|
||||
dns_message_id=dns_message_id
|
||||
dns_qr=dns_qr
|
||||
dns_opcode=dns_opcode
|
||||
dns_aa=dns_aa
|
||||
dns_tc=dns_tc
|
||||
dns_rd=dns_rd
|
||||
dns_ra=dns_ra
|
||||
dns_rcode=dns_rcode
|
||||
dns_qdcount=dns_qdcount
|
||||
dns_ancount=dns_ancount
|
||||
dns_nscount=dns_nscount
|
||||
dns_arcount=dns_arcount
|
||||
dns_qname=dns_qname
|
||||
dns_qtype=dns_qtype
|
||||
dns_qclass=dns_qclass
|
||||
dns_cname=dns_cname
|
||||
dns_sub=dns_sub
|
||||
dns_rr=dns_rr
|
||||
ssl_version=ssl_version
|
||||
ssl_sni=ssl_sni
|
||||
ssl_san=ssl_san
|
||||
ssl_cn=ssl_cn
|
||||
ssl_handshake_latency_ms=ssl_con_latency_ms
|
||||
ssl_ja3_hash=ssl_ja3_hash
|
||||
ssl_cert_issuer=ssl_cert_issuer
|
||||
ssl_cert_subject=ssl_cert_subject
|
||||
quic_version=quic_version
|
||||
quic_sni=quic_sni
|
||||
quic_user_agent=quic_user_agent
|
||||
ftp_account=ftp_account
|
||||
ftp_url=ftp_url
|
||||
ftp_link_type=ftp_link_type
|
||||
#security-event
|
||||
http_request_body=http_request_body
|
||||
http_response_body=http_response_body
|
||||
http_response_latency_ms=http_response_latency_ms
|
||||
http_session_duration_ms=http_session_duration_ms
|
||||
security_rule_list=security_rule_list
|
||||
monitor_rule_list=monitor_rule_list
|
||||
tcp_handshake_latency_ms=common_establish_latency_ms
|
||||
#proxy-event
|
||||
http_action_file_size=http_action_file_size
|
||||
doh_url=doh_url
|
||||
doh_host=doh_host
|
||||
doh_cookie=doh_cookie
|
||||
doh_referer=doh_referer
|
||||
doh_user_agent=doh_user_agent
|
||||
doh_version=doh_version
|
||||
doh_message_id=doh_message_id
|
||||
doh_qr=doh_qr
|
||||
doh_opcode=doh_opcode
|
||||
doh_aa=doh_aa
|
||||
doh_tc=doh_tc
|
||||
doh_rd=doh_rd
|
||||
doh_ra=doh_ra
|
||||
doh_rcode=doh_rcode
|
||||
doh_qdcount=doh_qdcount
|
||||
doh_ancount=doh_ancount
|
||||
doh_nscount=doh_nscount
|
||||
doh_arcount=doh_arcount
|
||||
doh_qname=doh_qname
|
||||
doh_qtype=doh_qtype
|
||||
doh_qclass=doh_qclass
|
||||
doh_cname=doh_cname
|
||||
doh_sub=doh_sub
|
||||
doh_rr=doh_rr
|
||||
proxy_rule_list=proxy_rule_list
|
||||
#session-record
|
||||
tcp_c2s_ip_fragments=common_c2s_ipfrag_num
|
||||
tcp_s2c_ip_fragments=common_s2c_ipfrag_num
|
||||
tcp_c2s_o3_pkts=common_c2s_tcp_unorder_num
|
||||
tcp_s2c_o3_pkts=common_s2c_tcp_unorder_num
|
||||
Reference in New Issue
Block a user