Skip to content

Commit

Permalink
checkpoint: elastic#11894 set basic metadata for integartion and upda…
Browse files Browse the repository at this point in the history
…te readme file
  • Loading branch information
srilumpa committed Dec 19, 2024
1 parent a60d5f6 commit a60adaf
Show file tree
Hide file tree
Showing 3 changed files with 9 additions and 1 deletion.
5 changes: 5 additions & 0 deletions packages/checkpoint/changelog.yml
Original file line number Diff line number Diff line change
@@ -1,4 +1,9 @@
# newer versions go on top
- version: "1.35.0"
changes:
- description: Handle session logs from firewall events
type: enhancement
link: TBD
- version: "1.34.4"
changes:
- description: Add instructions on using logfile input
Expand Down
3 changes: 3 additions & 0 deletions packages/checkpoint/docs/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -147,6 +147,7 @@ An example event for `firewall` looks as following:
| checkpoint.additional_rdata | List of additional resource records. | keyword |
| checkpoint.administrator | Source administrator name. | keyword |
| checkpoint.advanced_changes | | keyword |
| checkpoint.aggregated_log_count | Amount of logs aggregated in the event. | integer |
| checkpoint.alert | Alert level of matched rule (for connection logs). | keyword |
| checkpoint.allocated_ports | Amount of allocated ports. | integer |
| checkpoint.analyzed_on | Check Point ThreatCloud / emulator name. | keyword |
Expand Down Expand Up @@ -192,6 +193,7 @@ An example event for `firewall` looks as following:
| checkpoint.community | Community name for the IPSec key and the use of the IKEv. | keyword |
| checkpoint.confidence_level | Confidence level determined by ThreatCloud. | integer |
| checkpoint.conn_direction | Connection direction | keyword |
| checkpoint.connection_count | Amount of connections logged in this event | integer |
| checkpoint.connection_uid | Calculation of md5 of the IP and user name as UID. | keyword |
| checkpoint.connectivity_level | Log for a new connection in wire mode. | keyword |
| checkpoint.conns_amount | Connections amount of aggregated log info. | integer |
Expand Down Expand Up @@ -574,6 +576,7 @@ An example event for `firewall` looks as following:
| checkpoint.unique_detected_day | Detected virus for a specific host during the last day. | integer |
| checkpoint.unique_detected_hour | Detected virus for a specific host during the last hour. | integer |
| checkpoint.unique_detected_week | Detected virus for a specific host during the last week. | integer |
| checkpoint.update_count | AMount of time the event has been updated with new occurrences | integer |
| checkpoint.update_status | Status of database update | keyword |
| checkpoint.url | Translated URL. | keyword |
| checkpoint.user | Source user name. | keyword |
Expand Down
2 changes: 1 addition & 1 deletion packages/checkpoint/manifest.yml
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
name: checkpoint
title: Check Point
version: "1.34.4"
version: "1.35.0"
description: Collect logs from Check Point with Elastic Agent.
type: integration
format_version: "3.0.3"
Expand Down

0 comments on commit a60adaf

Please sign in to comment.