To perform custom log searches, or to create or modify any graphs in the existing dashboards, you can use the OMS Log Query functionality.
For example, the “Per Application Attack Types” chart in the Barracuda Application Attack Statistics Dashboard displays the data based on the service IP address and port of the application instead of service name.
Examples of Search Filters in the Logs
- To view the attack types for an application, use the following query in the log search:
barracuda_CL | where LogType_s == "WF" | search ServiceIP_s == "188.8.131.52" | search ServicePort_d == "443"
- To view logs related to a particular AppId, use the following query in the log search:
barracuda_CL | where AppId_s == [appid]