Change log for BARRACUDA_FIREWALL
| Date | Changes |
|---|---|
| 2025-11-13 | Enhancement:
- Modified the grok pattern to parse intermediary.hostname correctly. - event.idm.read_only_udm.intermediary.hostname: Newly mapped `intermediary_host` raw log field with `event.idm.read_only_udm.intermediary.hostname` UDM field. - event.idm.read_only_udm.network.session_duration.seconds: Newly mapped `Duration` raw log field with `event.idm.read_only_udm.network.session_duration.seconds` UDM field. - event.idm.read_only_udm.additional.fields: Newly mapped `Count` raw log field with `event.idm.read_only_udm.additional.fields` UDM field. - event.idm.read_only_udm.security_result.description: Newly mapped `event_desc` raw log field with `event.idm.read_only_udm.security_result.description` UDM field. - event.idm.read_only_udm.network.ip_protocol: Setting `event.idm.read_only_udm.network.ip_protocol` UDM field with UDP when `ip_protocol` raw log field value is udp. |
| 2025-05-09 | Enhancement:
- event.idm.read_only_udm.security_result.summary: Newly mapped info raw log field with event.idm.read_only_udm.security_result.summary UDM field. |
| 2025-04-22 | Enhancement:
- Added support to map correct date in 'ingested_timestamp' UDM field. - Added support to parse logs which have 'product_event_type' as 'IL_Barracuda_NG_FW'. |
| 2024-09-05 | Enhancement:
- Modified a Grok pattern to handle unparsed logs. |
| 2024-05-17 | Enhancement:
- Added "on_error" for a Grok filter. - Added IP address check for "target_ip" before merging with "target.ip". |
| 2024-04-12 | Enhancement:
- Modified date pattern to consider "event_time" value that includes timezone. |
| 2024-03-22 | Enhancement:
- Added new Grok to parse logs with timestamp of ISO8601 format. |
| 2022-07-08 | Newly Created Parser.
|