Cisco Wireless Lan Controller parser (based on syslog daemon connector)

Document created by vip on Aug 23, 2011Last modified by vip on Oct 30, 2012
Version 5Show Document
  • View in full screen mode

Cisco documents quite a lot of messages for this device, but very few are useful for security analysis and the description of these messages is not always very obvious (and even sometimes wrong). This is why we've built this parser in a "parse what you see" mode - we didn't rely on the manual to get the full list of messages. Hence, consider this parser as a starting point, but not as a definitive solution for parsing all WLC events.




Version 0.1 : initial development

Version 0.2 : fix to support newer versions of the WLC (logging format has slightly changed)

Version 0.3 : fix to support parsing of some messages (reported by Myles Powers)

Version 0.4 : fix to avoid dstprotector (no more usage of deviceExternalId)