Log Types: DhcpSrvLog
- Leigh Purdie (Unlicensed)
Overview
A DHCP Server is a network server that dynamically assigns and provides IP addresses, default gateways and other network parameters to client devices.
It relies on the standard protocol known as Dynamic Host Configuration Protocol or DHCP to respond to broadcast queries by clients.
Collection
The Snare Epilog agent can collect and forward DHCP server logs.
Sample Events
DCP02.MAIN.GOV DhcpSrvLog 1/18/04 16:31:16 Windows 55 00:0d:93:b1:9e:d6 171.64.20.1 MAIN Authorized(servicing)
Fields
Field | Description |
|---|---|
DATE | Event date, in the format YYYY-MM-DD |
TIME | Event time, in the format HH:MM:SS |
SYSTEM | The source system |
TABLE | CISCORouterLog |
TYPE | Generally, the source operating system associated with the logs (eg: Windows) |
ID | A numeric identifier |
MACADDR | MAC Address of the requesting device |
HOSTNAME | Hostname or IP address assigned |
DESCRIPTION | Any other details provided by the event |