Acquia Cloud Platform¶
About¶
Cloud Platform is a Drupal-tuned application lifecycle management suite with a complete infrastructure to support Drupal deployment workflow processes from development and staging through to production.
Product Details¶
Vendor URL: Acquia
Product Type: application management system
Product Tier: Tier III
Integration Method: Syslog
Parser Details¶
Log Format: Syslog, JSON
Expected Normalization Rate: 100%
Data Label: ACQUIA_CLOUD_PLATFORM
UDM Fields (list of all UDM fields leveraged in the Parser):
| Log File Field | UDM Field |
|---|---|
| ACQUIA | metadata.vendor_name |
| Cloud Platform | metadata.product_name |
| client_ip | principal.ip |
| client_ip | principal.asset.ip |
| host | target.hostname |
| host + url | target.url |
| url | target.file.full_path |
| host | target.asset.hostname |
| host | target.domain.name |
| custom fitler | observer.hostname |
| method | network.http.method |
| referrer | network.http.referral_url |
| user_agent | network.http.user_agent |
| status | network.http.response_code |
| request_id | network.session_id |
Product Event Types¶
| Event | UDM Event Classification |
|---|---|
| all others | GENERIC_EVENT |
Log Sample¶
133>1 2022-11-30T17:49:00+00:00 aaa-45555 varnishncsa - - -
{
"time": "[30/Nov/2022:17:49:00 +0000]",
"status": "301",
"bytes": "462",
"method": "GET",
"host": "www.domain.com",
"url": "/path/1111",
"referrer": "https://www.domain.com/path",
"user_agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36",
"client_ip": "10.10.0.1",
"time_firstbyte": "0.032931",
"hitmiss": "miss",
"handling": "miss",
"forwarded_for": "10.10.0.2, 10.10.0.1",
"request_id": "v-aaaaaaa-bbbb-11cc-addd-eeeeeefffffff",
"ah_log": "",
"ah_application_id": "6bbbbbb-aaaa-8ccc-3eeffffeees",
"ah_environment": "prod",
"ah_trace_id": "YaaeccjAoCAckAAAoC7ssAAAA7"
}
Sample Parsing¶
metadata.event_timestamp.seconds = 1669830540
metadata.event_timestamp.nanos = 0
metadata.event_type = "GENERIC_EVENT"
metadata.vendor_name = "ACQUIA"
metadata.product_name = "Cloud Platform"
metadata.product_event_type = "varnishncsa"
principal.ip = "10.10.0.1"
principal.asset.ip = "10.10.0.1"
target.hostname = "www..com"
target.url = "www.domain.com/path/1111"
target.file.full_path = "/path/1111"
target.asset.hostname = "www.domain.com"
target.domain.name = "www.domain.com"
observer.hostname = "aaa-45555"
network.http.method = "GET"
network.http.referral_url = "https://www.domain.com/path""
network.http.user_agent = "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36"
network.http.response_code = 301
network.session_id = "v-aaaaaaa-bbbb-11cc-addd-eeeeeefffffff"
Parser Alerting¶
No parser based alerting
Rules¶
Coming Soon