Microsoft-Windows-Base-Filtering-Engine-Connections
2 events across 1 channel
| Event ID | Title | Channel |
|---|---|---|
| 2000 | New Connection | Operational |
| 2001 | Connection Closed | Operational |
Event ID 2000 — New Connection
Message
Fields
| Name | Description |
|---|---|
ConnectionId | — |
MachineAuthenticationMethod | — |
RemoteMachineAccount | — |
UserAuthenticationMethod | — |
RemoteUserAcount | — |
RemoteIPAddress | — |
LocalIPAddress | — |
TechnologyProviderKey | — |
IPsecTrafficMode | — |
DHGroup | — |
StartTime | — |
Event ID 2001 — Connection Closed
Message
Fields
| Name | Description |
|---|---|
ConnectionId | — |
MachineAuthenticationMethod | — |
RemoteMachineAccount | — |
UserAuthenticationMethod | — |
RemoteUserAcount | — |
RemoteIPAddress | — |
LocalIPAddress | — |
TechnologyProviderKey | — |
IPsecTrafficMode | — |
BytesTransferredInbound | — |
BytesTransferredOutbound | — |
BytesTransferredTotal | — |
StartTime | — |
CloseTime | — |