Cisco ACS替代方案系列之二---Splunk
Content:Saved search results. Name: 'Config Change' Query Terms: 'now=1242100800 %ASA-5-111008 OR %PARSER-5-CFGLOG_LOGGEDCMD startminutesago=60'Alert was triggered because of: 'Saved Search : number of events(16) greater than 1' Search results attached:
页:
[1]