From cf90ea6b900fbb1f7e0af95f4534d8e1dae307ff Mon Sep 17 00:00:00 2001 From: MikePaquette Date: Wed, 28 Nov 2018 14:16:15 -0500 Subject: [PATCH 1/3] Clarify network definition --- README.md | 2 +- fields.yml | 2 +- schemas/network.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/README.md b/README.md index c1afa68319..4d8f82bcde 100644 --- a/README.md +++ b/README.md @@ -293,7 +293,7 @@ Fields which are specific to log events. ## Network fields -Fields related to network data. +The network is defined as the communication path over which a host or network event happens. Network events do not include the transmission of an event from a host or device to the Elastic Stack. The network.* fields should be populated with details about the network activity associated with an event. | Field | Description | Level | Type | Example | diff --git a/fields.yml b/fields.yml index 9be7843fab..dcd643bafa 100644 --- a/fields.yml +++ b/fields.yml @@ -788,7 +788,7 @@ title: Network group: 2 description: > - Fields related to network data. + The network is defined as the communication path over which a host or network event happens. Network events do not include the transmission of an event from a host or device to the Elastic Stack. The network.* fields should be populated with details about the network activity associated with an event. type: group fields: diff --git a/schemas/network.yml b/schemas/network.yml index 305df1e7de..e69151a120 100644 --- a/schemas/network.yml +++ b/schemas/network.yml @@ -3,7 +3,7 @@ title: Network group: 2 description: > - Fields related to network data. + The network is defined as the communication path over which a host or network event happens. Network events do not include the transmission of an event from a host or device to the Elastic Stack. The network.* fields should be populated with details about the network activity associated with an event. type: group fields: From 2654745596d0449007b2098848d12d3b67b823e8 Mon Sep 17 00:00:00 2001 From: MikePaquette Date: Wed, 28 Nov 2018 14:20:01 -0500 Subject: [PATCH 2/3] Updated CHANGELOG.md --- CHANGELOG.md | 1 + 1 file changed, 1 insertion(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index ab15820e75..c9a0a24858 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -27,6 +27,7 @@ All notable changes to this project will be documented in this file based on the * Improved the definition of the file fields #196 * Improved the definition of the agent fields #192 * Improve definition of events, logs, and metrics in event section #194 +* Improved the definition of network fields in intro section #197 ### Deprecated From a4a8d0b5d9cadc4e7589eee8f519b02d95fa6edc Mon Sep 17 00:00:00 2001 From: MikePaquette Date: Tue, 4 Dec 2018 10:39:31 -0500 Subject: [PATCH 3/3] remove sentence about path exclusion --- README.md | 2 +- fields.yml | 2 +- schemas/network.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/README.md b/README.md index 4d8f82bcde..35f841eef8 100644 --- a/README.md +++ b/README.md @@ -293,7 +293,7 @@ Fields which are specific to log events. ## Network fields -The network is defined as the communication path over which a host or network event happens. Network events do not include the transmission of an event from a host or device to the Elastic Stack. The network.* fields should be populated with details about the network activity associated with an event. +The network is defined as the communication path over which a host or network event happens. The network.* fields should be populated with details about the network activity associated with an event. | Field | Description | Level | Type | Example | diff --git a/fields.yml b/fields.yml index dcd643bafa..123462aeef 100644 --- a/fields.yml +++ b/fields.yml @@ -788,7 +788,7 @@ title: Network group: 2 description: > - The network is defined as the communication path over which a host or network event happens. Network events do not include the transmission of an event from a host or device to the Elastic Stack. The network.* fields should be populated with details about the network activity associated with an event. + The network is defined as the communication path over which a host or network event happens. The network.* fields should be populated with details about the network activity associated with an event. type: group fields: diff --git a/schemas/network.yml b/schemas/network.yml index e69151a120..48df48e767 100644 --- a/schemas/network.yml +++ b/schemas/network.yml @@ -3,7 +3,7 @@ title: Network group: 2 description: > - The network is defined as the communication path over which a host or network event happens. Network events do not include the transmission of an event from a host or device to the Elastic Stack. The network.* fields should be populated with details about the network activity associated with an event. + The network is defined as the communication path over which a host or network event happens. The network.* fields should be populated with details about the network activity associated with an event. type: group fields: