Products: Dell - Firewall

Rules

Rule ID	Rule Name
MATCH-S00565	Direct Outbound DNS Traffic
THRESHOLD-S00074	Excessive Firewall Denies
FIRST-S00030	First Seen Outbound Connection to External IP Address on Port 445 from IP Address
LEGACY-S00039	GitHub Raw URL Resource Request
THRESHOLD-S00079	Inbound Port Scan
THRESHOLD-S00080	Internal Port Scan
THRESHOLD-S00081	Internal Port Sweep
MATCH-S00457	Large File Upload
MATCH-S00556	Outbound Data Transfer Protocol Over Non-standard Port
MATCH-S00554	Outbound IRC Traffic
LEGACY-S00056	Outbound TFTP Traffic
THRESHOLD-S00040	Possible DNS over TLS (DoT) Activity
MATCH-S00835	Possible Dynamic URL Domain
LEGACY-S00107	Threat Intel Match - IP Address

Log Mapper ID	Log Mapper Name
9a24ec1a-ac84-4590-8dc9-88a89af1584b	SonicWall Firewall - Custom Parser
A5E53A82-4888-43CB-A66C-3FE27BBE3837	SonicWall Flows