Our SIEM team is having trouble interpreting the logs that are sent from our Ruckus Unleashed APs. Does anyone know/have a data dictionary that explains the log format, fields and other information captured?
Are you talking about syslogs?
No, there is no dictionary for log interpretation.
Are you looking for some specific information? Because AP modules will have so many different logs and not everything can be explained or required by end server.
Yes, I'm referring to the syslogs. At the moment we're not sure what we're looking for since we don't know what the logs show at the moment.
But things like the following would be helpful:
But we may have other needs once we get an idea of what the logs are capable of showing.
For our other controller based products like ZD and SZ, we do have syslog referance guide, but not for Unleashed. However, ZD and Unleashed has similar software.
Please refer below syslog guide which is for ZD, most of the logs are relevant with Unleashed.
Thank you Syamantak, that certainly puts us in a better position than before.