{ "api.version": "v1", "sources": [ { "name": "syslog_udp_514", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": false, "forceTimeZone": false, "timeZone": "America/Chicago", "encoding": "UTF-8", "protocol": "UDP", "port": 514, "category": "unix_logs", "sourceType": "Syslog" }, { "name": "syslog_tcp_514", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": false, "forceTimeZone": false, "timeZone": "America/Chicago", "encoding": "UTF-8", "protocol": "TCP", "port": 514, "category": "unix_logs", "sourceType": "Syslog" }, { "name": "syslog_udp_1514", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": false, "forceTimeZone": false, "timeZone": "America/Chicago", "encoding": "UTF-8", "protocol": "UDP", "port": 1514, "category": "juniper_logs", "sourceType": "Syslog" }, { "name": "syslog_tcp_1514", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": false, "forceTimeZone": false, "timeZone": "America/Chicago", "encoding": "UTF-8", "protocol": "TCP", "port": 1514, "category": "juniper_logs", "sourceType": "Syslog" }, { "name": "syslog_udp_1515", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": false, "forceTimeZone": false, "timeZone": "America/Chicago", "encoding": "UTF-8", "protocol": "UDP", "port": 1515, "category": "bigip_logs", "sourceType": "Syslog" }, { "name": "syslog_tcp_1515", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": false, "forceTimeZone": false, "timeZone": "America/Chicago", "encoding": "UTF-8", "protocol": "TCP", "port": 1515, "category": "bigip_logs", "sourceType": "Syslog" }, { "name": "syslog_udp_3514", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": false, "forceTimeZone": false, "timeZone": "America/Chicago", "encoding": "UTF-8", "protocol": "UDP", "port": 3514, "category": "unix_logs", "sourceType": "Syslog" }, { "name": "syslog_tcp_3514", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": false, "forceTimeZone": false, "timeZone": "America/Chicago", "encoding": "UTF-8", "protocol": "TCP", "port": 3514, "category": "unix_logs", "sourceType": "Syslog" }, { "name": "fgt_udp_4514", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": false, "forceTimeZone": false, "timeZone": "America/Chicago", "defaultDateFormat": "'date='yyyy-MM-dd 'time='HH:mm:ss", "encoding": "UTF-8", "protocol": "UDP", "port": 4514, "category": "fw_security", "sourceType": "Syslog" }, { "name": "fgt_tcp_4514", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": false, "forceTimeZone": false, "timeZone": "America/Chicago", "defaultDateFormat": "'date='yyyy-MM-dd 'time='HH:mm:ss", "encoding": "UTF-8", "protocol": "TCP", "port": 4514, "category": "fw_security", "sourceType": "Syslog" }, { "name": "ubuntu_audit_log", "sourceType": "LocalFile", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": true, "forceTimeZone": false, "timeZone": "America/Chicago", "category": "os_security", "pathExpression": "/var/log/audit/*.log" }, { "name": "ubuntu_auth_log", "sourceType": "LocalFile", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": true, "forceTimeZone": false, "timeZone": "America/Chicago", "category": "os_security", "pathExpression": "/var/log/auth.log" }, { "name": "ubuntu_cron", "sourceType": "LocalFile", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": true, "forceTimeZone": false, "timeZone": "America/Chicago", "category": "unix_logs", "pathExpression": "/var/log/cron" }, { "name": "ubuntu_dmesg", "sourceType": "LocalFile", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": true, "forceTimeZone": false, "timeZone": "America/Chicago", "category": "unix_logs", "pathExpression": "/var/log/dmesg" }, { "name": "ubuntu_daemon_log", "sourceType": "LocalFile", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": true, "forceTimeZone": false, "timeZone": "America/Chicago", "category": "unix_logs", "pathExpression": "/var/log/daemon.log" }, { "name": "ubuntu_kern_log", "sourceType": "LocalFile", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": true, "forceTimeZone": false, "timeZone": "America/Chicago", "category": "unix_logs", "pathExpression": "/var/log/kern.log" }, { "name": "ubuntu_mail_log", "sourceType": "LocalFile", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": true, "forceTimeZone": false, "timeZone": "America/Chicago", "category": "unix_logs", "pathExpression": "/var/log/mail.log" }, { "name": "ubuntu_mail_err", "sourceType": "LocalFile", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": true, "forceTimeZone": false, "timeZone": "America/Chicago", "category": "unix_logs", "pathExpression": "/var/log/mail.err" }, { "name": "ubuntu_mail_info", "sourceType": "LocalFile", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": true, "forceTimeZone": false, "timeZone": "America/Chicago", "category": "unix_logs", "pathExpression": "/var/log/mail.info" }, { "name": "ubuntu_messages", "sourceType": "LocalFile", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": true, "forceTimeZone": false, "timeZone": "America/Chicago", "category": "unix_logs", "pathExpression": "/var/log/messages" }, { "name": "ubuntu_syslog", "sourceType": "LocalFile", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": true, "forceTimeZone": false, "timeZone": "America/Chicago", "category": "unix_logs", "pathExpression": "/var/log/syslog" }, { "name": "ubuntu_secure", "sourceType": "LocalFile", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": true, "forceTimeZone": false, "timeZone": "America/Chicago", "category": "os_security", "pathExpression": "/var/log/secure" }, { "name": "nginx_logs", "sourceType": "LocalFile", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": true, "forceTimeZone": false, "timeZone": "UTC", "category": "nginx_logs", "pathExpression": "/var/log/nginx/*.log" }, { "name": "mirrors_udp_1516", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": false, "forceTimeZone": false, "timeZone": "UTC", "encoding": "UTF-8", "protocol": "UDP", "hostName": "mirrors-server", "port": 1516, "category": "nginx_logs", "sourceType": "Syslog" }, { "name": "apache_logs", "sourceType": "LocalFile", "automaticDateParsing": true, "multilineProcessingEnabled": false, "useAutolineMatching": true, "forceTimeZone": false, "timeZone": "UTC", "category": "apache_logs", "pathExpression": "/var/log/apache2/*.log" } ] }