Skip to content

Commit

Permalink
Update ECS mapping in docs
Browse files Browse the repository at this point in the history
  • Loading branch information
@andrewkroh
andrewkroh committed Nov 16, 2022
1 parent 53f7cc9 commit 024b82b
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion x-pack/filebeat/processors/aws_vpcflow/docs/parse_aws_vpc_flow_log.asciidoc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -95,6 +95,7 @@ transformations applied to derive the ECS field.
| VPC Flow Log Field | ECS Field |
| account_id | cloud.account.id |
| action | event.outcome |
| action | event.action |
| az_id | cloud.availability_zone |
| bytes | network.bytes |
| bytes | source.bytes |
Expand All @@ -108,7 +109,7 @@ transformations applied to derive the ECS field.
| packets | network.packets |
| packets | source.packets |
| protocol | network.iana_number |
| protocol | network.protocol |
| protocol | network.transport |
| region | cloud.region |
| srcaddr | network.type |
| srcaddr | source.address |
Expand Down

0 comments on commit 024b82b

Please sign in to comment.