FortiSIEM Application Monitoring Events

Sample event

[PH_DEV_MON_PROC_RESOURCE_UTIL]:[eventSeverity]=PHL_INFO,[fileName]=phPe rfJob.cpp,[lineNumber]=2801,[swProcName]=mfeann.exe,[hostName]=QA-V-WIN0 3-IIS1,[hostIpAddr]=192.168.1.6,[memUtil]=0.208340,[cpuUtil]=0.000000,[a ppName]=McAfee Virus-scan Process,[appGroupName]=McAfee Virus-scan Process,[pollIntv]=176,[swParam]=  940,[phLogDetail]=

[PH_DEV_MON_PROC_RESOURCE_UTIL]:[eventSeverity]=PHL_INFO,[fileName]=phPe rfJob.cpp,[lineNumber]=2809,[swProcName]=snmp.exe,[hostName]=QA-EXCHG,[h ostIpAddr]=172.16.10.28,[memUtil]=0.254050,[cpuUtil]=0.062386,[appName]= Windows SNMP Service,[appGroupName]=Windows SNMP Service,[realMemPeakKBytes]=5320,[virtMemKBytes]=55528,[peakVirtMemKByte s]=57848,[diskReadKBytesPerSec]=0.107272,[diskWriteKBytesPerSec]=0.00002 5,[sysUpTime]=1586025,[pollIntv]=176,[swParam]=,[phLogDetail]=

Apache Performance Metrics

This entry was posted in Administration Guides, FortiSIEM on by .

About Mike

Michael Pruett, CISSP has a wide range of cyber-security and network engineering expertise. The plethora of vendors that resell hardware but have zero engineering knowledge resulting in the wrong hardware or configuration being deployed is a major pet peeve of Michael's. This site was started in an effort to spread information while providing the option of quality consulting services at a much lower price than Fortinet Professional Services. Owns PacketLlama.Com (Fortinet Hardware Sales) and Office Of The CISO, LLC (Cybersecurity consulting firm).

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.