syslog tcp/514 "standard/cef" received from Cisco Sentryo Cybervision
showing as Unknown Log Event
<158>Nov 5 17:38:54 rsyslogd cybervision[2]: CEF:0|sentryo|cybervision|1.0|offline_data_upload|Offline data file uploaded to Cisco Cyber Vision|0|cat=Cisco Cyber Vision Operations msg=An offline data file named 'Pcap_1c_Mode_Monitor_3.1offline-data.zip' was uploaded to Cyber Vision (status: OK).
I'm assuming my LogSourceIdentifier is incorrect? I used the SRC IPaddr.
Yes, I have installed the Sentryo Cybervision App. QR CE 7.3.3
------------------------------
Daniel Ralph
------------------------------