NAME

eris::log::context::iptables - Parses iptables messages into structured data.

VERSION

version 0.008

SYNOPSIS

Parses iptables messages into structured data.

ATTRIBUTES

field

Our regex will match the message string

matcher

A regex starting with the word 'iptables'

METHODS

contextualize_message

Parses the iptables log into structured data containing the keys:

dev       => Physical interface
src_mac   => Source MAC Address
src_ip    => Source IP Address
src_port  => Source Port
dst_ip    => Destination IP Address
dst_port  => Destination Port
proto_app => Protocol
in_bytes  => Bytes In
out_bytes => Bytes Out

Tags messages with 'security' and 'firewall'

SEE ALSO

eris::log::contextualizer, eris::role::context

AUTHOR

Brad Lhotsky <brad@divisionbyzero.net>

COPYRIGHT AND LICENSE

This software is Copyright (c) 2015 by Brad Lhotsky.

This is free software, licensed under:

The (three-clause) BSD License