{ "annotations": { "list": [] }, "editable": true, "fiscalYearStartMonth": 0, "graphTooltip": 0, "id": null, "links": [], "liveNow": false, "panels": [ { "collapsed": false, "gridPos": { "h": 1, "w": 24, "x": 0, "y": 0 }, "id": 1, "panels": [], "title": "Overview", "type": "row" }, { "datasource": "Loki", "gridPos": { "h": 6, "w": 8, "x": 0, "y": 1 }, "id": 30, "options": { "dedupStrategy": "none", "showLabels": false, "showTime": true, "sortOrder": "Descending", "wrapLogMessage": true }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "{service=\"ahnlab_mds\", risk=~\"Low|Medium|High\"} | json | line_format \"{{.host}} | {{.src_ip}} | {{.detect_name}} | {{.risk}}\"", "queryType": "range", "refId": "A" } ], "title": "MDS Risk Logs (host | src_ip | detect_name | risk)", "type": "logs" }, { "datasource": "Loki", "gridPos": { "h": 6, "w": 8, "x": 8, "y": 1 }, "id": 31, "options": { "dedupStrategy": "none", "showLabels": false, "showTime": true, "sortOrder": "Descending", "wrapLogMessage": true }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "{service=\"ahnlab_epp\", syslog_type=\"V3_MALWARE\"} | json | line_format \"{{.host}} | {{.src_ip}} | {{.login_id}} | {{.message}}\"", "queryType": "range", "refId": "A" } ], "title": "EPP V3_MALWARE Logs (host | src_ip | login_id | message)", "type": "logs" }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "align": "auto", "cellOptions": { "type": "auto" }, "inspect": false }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 1 } ] } }, "overrides": [] }, "gridPos": { "h": 6, "w": 8, "x": 16, "y": 1 }, "id": 32, "options": { "showHeader": true, "sortBy": [ { "desc": true, "displayName": "COUNT" } ] }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "sum by (risk) (count_over_time({service=\"ahnlab_edr\", risk=~\"Low|Medium|High\"}[$__range]))", "legendFormat": "{{risk}}", "queryType": "instant", "refId": "A" } ], "title": "EDR Risk Exists (Low/Medium/High)", "type": "table", "transformations": [ { "id": "labelsToFields", "options": {} }, { "id": "organize", "options": { "excludeByName": { "Time": true }, "indexByName": { "risk": 0, "Value": 1 }, "renameByName": { "Value": "COUNT", "Value #A": "COUNT", "risk": "RISK", "count": "COUNT", "RISK": "RISK", "COUNT": "COUNT" } } } ] }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "axisCenteredZero": false, "axisColorMode": "text", "axisLabel": "", "axisPlacement": "auto", "barAlignment": 0, "drawStyle": "line", "fillOpacity": 0, "gradientMode": "none", "hideFrom": { "legend": false, "tooltip": false, "viz": false }, "lineInterpolation": "linear", "lineWidth": 1, "pointSize": 5, "scaleDistribution": { "type": "linear" }, "showPoints": "auto", "spanNulls": false, "stacking": { "group": "A", "mode": "none" }, "thresholdsStyle": { "mode": "off" } }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 80 } ] } }, "overrides": [] }, "gridPos": { "h": 8, "w": 12, "x": 0, "y": 7 }, "id": 2, "options": { "legend": { "displayMode": "list", "placement": "bottom", "showLegend": true }, "tooltip": { "mode": "single", "sort": "none" } }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "sum by (service) (count_over_time({env=~\"$env\", service=~\"$service\"}[$__interval]))", "legendFormat": "{{service}}", "queryType": "range", "refId": "A" } ], "title": "Events by Service", "type": "timeseries" }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "axisCenteredZero": false, "axisColorMode": "text", "axisLabel": "", "axisPlacement": "auto", "barAlignment": 0, "drawStyle": "line", "fillOpacity": 0, "gradientMode": "none", "hideFrom": { "legend": false, "tooltip": false, "viz": false }, "lineInterpolation": "linear", "lineWidth": 1, "pointSize": 5, "scaleDistribution": { "type": "linear" }, "showPoints": "auto", "spanNulls": false, "stacking": { "group": "A", "mode": "none" }, "thresholdsStyle": { "mode": "off" } }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 80 } ] } }, "overrides": [] }, "gridPos": { "h": 8, "w": 12, "x": 12, "y": 7 }, "id": 3, "options": { "legend": { "displayMode": "list", "placement": "bottom", "showLegend": true }, "tooltip": { "mode": "single", "sort": "none" } }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "sum by (risk) (count_over_time({env=~\"$env\", service=~\"$service\", risk=~\"$risk\"}[$__interval]))", "legendFormat": "{{risk}}", "queryType": "range", "refId": "A" } ], "title": "Risk Trend", "type": "timeseries" }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "axisCenteredZero": false, "axisColorMode": "text", "axisLabel": "", "axisPlacement": "auto", "barAlignment": 0, "drawStyle": "line", "fillOpacity": 0, "gradientMode": "none", "hideFrom": { "legend": false, "tooltip": false, "viz": false }, "lineInterpolation": "linear", "lineWidth": 1, "pointSize": 5, "scaleDistribution": { "type": "linear" }, "showPoints": "auto", "spanNulls": false, "stacking": { "group": "A", "mode": "none" }, "thresholdsStyle": { "mode": "off" } }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 80 } ] } }, "overrides": [] }, "gridPos": { "h": 8, "w": 12, "x": 0, "y": 15 }, "id": 4, "options": { "legend": { "displayMode": "list", "placement": "bottom", "showLegend": true }, "tooltip": { "mode": "single", "sort": "none" } }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "sum by (parse_status) (count_over_time({env=~\"$env\", service=~\"$service\"}[$__interval]))", "legendFormat": "{{parse_status}}", "queryType": "range", "refId": "A" } ], "title": "Parse Status Trend", "type": "timeseries" }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "axisCenteredZero": false, "axisColorMode": "text", "axisLabel": "", "axisPlacement": "auto", "barAlignment": 0, "drawStyle": "line", "fillOpacity": 0, "gradientMode": "none", "hideFrom": { "legend": false, "tooltip": false, "viz": false }, "lineInterpolation": "linear", "lineWidth": 1, "pointSize": 5, "scaleDistribution": { "type": "linear" }, "showPoints": "auto", "spanNulls": false, "stacking": { "group": "A", "mode": "none" }, "thresholdsStyle": { "mode": "off" } }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 80 } ] } }, "overrides": [] }, "gridPos": { "h": 8, "w": 12, "x": 12, "y": 15 }, "id": 5, "options": { "legend": { "displayMode": "list", "placement": "bottom", "showLegend": true }, "tooltip": { "mode": "single", "sort": "none" } }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "topk(10, sum by (syslog_type) (count_over_time({env=~\"$env\", service=~\"$service\", syslog_type=~\"$syslog_type\"}[$__interval])))", "legendFormat": "{{syslog_type}}", "queryType": "range", "refId": "A" } ], "title": "Top Syslog Type", "type": "timeseries" }, { "collapsed": false, "gridPos": { "h": 1, "w": 24, "x": 0, "y": 23 }, "id": 6, "panels": [], "title": "MDS", "type": "row" }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "axisCenteredZero": false, "axisColorMode": "text", "axisLabel": "", "axisPlacement": "auto", "barAlignment": 0, "drawStyle": "line", "fillOpacity": 0, "gradientMode": "none", "hideFrom": { "legend": false, "tooltip": false, "viz": false }, "lineInterpolation": "linear", "lineWidth": 1, "pointSize": 5, "scaleDistribution": { "type": "linear" }, "showPoints": "auto", "spanNulls": false, "stacking": { "group": "A", "mode": "none" }, "thresholdsStyle": { "mode": "off" } }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 80 } ] } }, "overrides": [] }, "gridPos": { "h": 8, "w": 12, "x": 0, "y": 24 }, "id": 7, "options": { "legend": { "displayMode": "list", "placement": "bottom", "showLegend": true }, "tooltip": { "mode": "single", "sort": "none" } }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "sum by (log_type) (count_over_time({service=\"ahnlab_mds\"} | json | log_type=~\"$mds_log_type\" [$__interval]))", "legendFormat": "{{log_type}}", "queryType": "range", "refId": "A" } ], "title": "MDS log_type Trend", "type": "timeseries" }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "axisCenteredZero": false, "axisColorMode": "text", "axisLabel": "", "axisPlacement": "auto", "barAlignment": 0, "drawStyle": "line", "fillOpacity": 0, "gradientMode": "none", "hideFrom": { "legend": false, "tooltip": false, "viz": false }, "lineInterpolation": "linear", "lineWidth": 1, "pointSize": 5, "scaleDistribution": { "type": "linear" }, "showPoints": "auto", "spanNulls": false, "stacking": { "group": "A", "mode": "none" }, "thresholdsStyle": { "mode": "off" } }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 80 } ] } }, "overrides": [] }, "gridPos": { "h": 8, "w": 12, "x": 12, "y": 24 }, "id": 8, "options": { "legend": { "displayMode": "list", "placement": "bottom", "showLegend": true }, "tooltip": { "mode": "single", "sort": "none" } }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "sum by (risk) (count_over_time({service=\"ahnlab_mds\", risk=~\"$risk\"} | json | log_type=\"detection\" [$__interval]))", "legendFormat": "{{risk}}", "queryType": "range", "refId": "A" } ], "title": "MDS Risk (detection)", "type": "timeseries" }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "axisCenteredZero": false, "axisColorMode": "text", "axisLabel": "", "axisPlacement": "auto", "barAlignment": 0, "drawStyle": "line", "fillOpacity": 0, "gradientMode": "none", "hideFrom": { "legend": false, "tooltip": false, "viz": false }, "lineInterpolation": "linear", "lineWidth": 1, "pointSize": 5, "scaleDistribution": { "type": "linear" }, "showPoints": "auto", "spanNulls": false, "stacking": { "group": "A", "mode": "none" }, "thresholdsStyle": { "mode": "off" } }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 80 } ] } }, "overrides": [] }, "gridPos": { "h": 8, "w": 12, "x": 0, "y": 32 }, "id": 9, "options": { "legend": { "displayMode": "list", "placement": "bottom", "showLegend": true }, "tooltip": { "mode": "single", "sort": "none" } }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "topk(10, sum by (detect_name) (count_over_time({service=\"ahnlab_mds\"} | json | log_type=\"detection\" | detect_name != \"\" [$__interval])))", "legendFormat": "{{detect_name}}", "queryType": "range", "refId": "A" } ], "title": "MDS Top detect_name", "type": "timeseries" }, { "datasource": "Loki", "gridPos": { "h": 8, "w": 12, "x": 12, "y": 32 }, "id": 10, "options": { "dedupStrategy": "none", "showLabels": true, "showTime": true, "sortOrder": "Descending", "wrapLogMessage": true }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "{service=\"ahnlab_mds\"} | json | log_type=~\"$mds_log_type\"", "queryType": "range", "refId": "A" } ], "title": "MDS Logs", "type": "logs" }, { "collapsed": false, "gridPos": { "h": 1, "w": 24, "x": 0, "y": 40 }, "id": 11, "panels": [], "title": "EPP", "type": "row" }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "axisCenteredZero": false, "axisColorMode": "text", "axisLabel": "", "axisPlacement": "auto", "barAlignment": 0, "drawStyle": "line", "fillOpacity": 0, "gradientMode": "none", "hideFrom": { "legend": false, "tooltip": false, "viz": false }, "lineInterpolation": "linear", "lineWidth": 1, "pointSize": 5, "scaleDistribution": { "type": "linear" }, "showPoints": "auto", "spanNulls": false, "stacking": { "group": "A", "mode": "none" }, "thresholdsStyle": { "mode": "off" } }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 80 } ] } }, "overrides": [] }, "gridPos": { "h": 8, "w": 12, "x": 0, "y": 41 }, "id": 12, "options": { "legend": { "displayMode": "list", "placement": "bottom", "showLegend": true }, "tooltip": { "mode": "single", "sort": "none" } }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "sum by (syslog_type) (count_over_time({service=\"ahnlab_epp\", syslog_type=~\"$syslog_type\"}[$__interval]))", "legendFormat": "{{syslog_type}}", "queryType": "range", "refId": "A" } ], "title": "EPP syslog_type Trend", "type": "timeseries" }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "axisCenteredZero": false, "axisColorMode": "text", "axisLabel": "", "axisPlacement": "auto", "barAlignment": 0, "drawStyle": "line", "fillOpacity": 0, "gradientMode": "none", "hideFrom": { "legend": false, "tooltip": false, "viz": false }, "lineInterpolation": "linear", "lineWidth": 1, "pointSize": 5, "scaleDistribution": { "type": "linear" }, "showPoints": "auto", "spanNulls": false, "stacking": { "group": "A", "mode": "none" }, "thresholdsStyle": { "mode": "off" } }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 80 } ] } }, "overrides": [] }, "gridPos": { "h": 8, "w": 12, "x": 12, "y": 41 }, "id": 13, "options": { "legend": { "displayMode": "list", "placement": "bottom", "showLegend": true }, "tooltip": { "mode": "single", "sort": "none" } }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "topk(10, sum by (event_id) (count_over_time({service=\"ahnlab_epp\"} | json | event_id != \"\" [$__interval])))", "legendFormat": "{{event_id}}", "queryType": "range", "refId": "A" } ], "title": "EPP Top event_id", "type": "timeseries" }, { "datasource": "Loki", "gridPos": { "h": 8, "w": 24, "x": 0, "y": 49 }, "id": 14, "options": { "dedupStrategy": "none", "showLabels": true, "showTime": true, "sortOrder": "Descending", "wrapLogMessage": true }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "{service=\"ahnlab_epp\"} | json", "queryType": "range", "refId": "A" } ], "title": "EPP Logs", "type": "logs" }, { "collapsed": false, "gridPos": { "h": 1, "w": 24, "x": 0, "y": 57 }, "id": 15, "panels": [], "title": "EDR", "type": "row" }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "axisCenteredZero": false, "axisColorMode": "text", "axisLabel": "", "axisPlacement": "auto", "barAlignment": 0, "drawStyle": "line", "fillOpacity": 0, "gradientMode": "none", "hideFrom": { "legend": false, "tooltip": false, "viz": false }, "lineInterpolation": "linear", "lineWidth": 1, "pointSize": 5, "scaleDistribution": { "type": "linear" }, "showPoints": "auto", "spanNulls": false, "stacking": { "group": "A", "mode": "none" }, "thresholdsStyle": { "mode": "off" } }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 80 } ] } }, "overrides": [] }, "gridPos": { "h": 8, "w": 12, "x": 0, "y": 58 }, "id": 16, "options": { "legend": { "displayMode": "list", "placement": "bottom", "showLegend": true }, "tooltip": { "mode": "single", "sort": "none" } }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "sum by (behavior_category) (count_over_time({service=\"ahnlab_edr\"} | json | behavior_category != \"\" [$__interval]))", "legendFormat": "{{behavior_category}}", "queryType": "range", "refId": "A" } ], "title": "EDR behavior_category Trend", "type": "timeseries" }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "axisCenteredZero": false, "axisColorMode": "text", "axisLabel": "", "axisPlacement": "auto", "barAlignment": 0, "drawStyle": "line", "fillOpacity": 0, "gradientMode": "none", "hideFrom": { "legend": false, "tooltip": false, "viz": false }, "lineInterpolation": "linear", "lineWidth": 1, "pointSize": 5, "scaleDistribution": { "type": "linear" }, "showPoints": "auto", "spanNulls": false, "stacking": { "group": "A", "mode": "none" }, "thresholdsStyle": { "mode": "off" } }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 80 } ] } }, "overrides": [] }, "gridPos": { "h": 8, "w": 12, "x": 12, "y": 58 }, "id": 17, "options": { "legend": { "displayMode": "list", "placement": "bottom", "showLegend": true }, "tooltip": { "mode": "single", "sort": "none" } }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "sum by (risk) (count_over_time({service=\"ahnlab_edr\", risk=~\"$risk\"}[$__interval]))", "legendFormat": "{{risk}}", "queryType": "range", "refId": "A" } ], "title": "EDR Risk Trend", "type": "timeseries" }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "axisCenteredZero": false, "axisColorMode": "text", "axisLabel": "", "axisPlacement": "auto", "barAlignment": 0, "drawStyle": "line", "fillOpacity": 0, "gradientMode": "none", "hideFrom": { "legend": false, "tooltip": false, "viz": false }, "lineInterpolation": "linear", "lineWidth": 1, "pointSize": 5, "scaleDistribution": { "type": "linear" }, "showPoints": "auto", "spanNulls": false, "stacking": { "group": "A", "mode": "none" }, "thresholdsStyle": { "mode": "off" } }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 80 } ] } }, "overrides": [] }, "gridPos": { "h": 8, "w": 12, "x": 0, "y": 66 }, "id": 18, "options": { "legend": { "displayMode": "list", "placement": "bottom", "showLegend": true }, "tooltip": { "mode": "single", "sort": "none" } }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "topk(10, sum by (virus_fullname) (count_over_time({service=\"ahnlab_edr\"} | json | virus_fullname != \"\" [$__interval])))", "legendFormat": "{{virus_fullname}}", "queryType": "range", "refId": "A" } ], "title": "EDR Top virus_fullname", "type": "timeseries" }, { "datasource": "Loki", "gridPos": { "h": 8, "w": 12, "x": 12, "y": 66 }, "id": 19, "options": { "dedupStrategy": "none", "showLabels": true, "showTime": true, "sortOrder": "Descending", "wrapLogMessage": true }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "{service=\"ahnlab_edr\"} | json", "queryType": "range", "refId": "A" } ], "title": "EDR Logs", "type": "logs" }, { "collapsed": false, "gridPos": { "h": 1, "w": 24, "x": 0, "y": 74 }, "id": 20, "panels": [], "title": "Quality", "type": "row" }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "axisCenteredZero": false, "axisColorMode": "text", "axisLabel": "", "axisPlacement": "auto", "barAlignment": 0, "drawStyle": "line", "fillOpacity": 0, "gradientMode": "none", "hideFrom": { "legend": false, "tooltip": false, "viz": false }, "lineInterpolation": "linear", "lineWidth": 1, "pointSize": 5, "scaleDistribution": { "type": "linear" }, "showPoints": "auto", "spanNulls": false, "stacking": { "group": "A", "mode": "none" }, "thresholdsStyle": { "mode": "off" } }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 80 } ] } }, "overrides": [] }, "gridPos": { "h": 8, "w": 12, "x": 0, "y": 75 }, "id": 21, "options": { "legend": { "displayMode": "list", "placement": "bottom", "showLegend": true }, "tooltip": { "mode": "single", "sort": "none" } }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "sum by (service, parse_status) (count_over_time({env=~\"$env\", service=~\"$service\", parse_status!=\"ok\"}[$__interval]))", "legendFormat": "{{service}} {{parse_status}}", "queryType": "range", "refId": "A" } ], "title": "Parse Status (non-ok)", "type": "timeseries" }, { "datasource": "Loki", "fieldConfig": { "defaults": { "color": { "mode": "palette-classic" }, "custom": { "axisCenteredZero": false, "axisColorMode": "text", "axisLabel": "", "axisPlacement": "auto", "barAlignment": 0, "drawStyle": "line", "fillOpacity": 0, "gradientMode": "none", "hideFrom": { "legend": false, "tooltip": false, "viz": false }, "lineInterpolation": "linear", "lineWidth": 1, "pointSize": 5, "scaleDistribution": { "type": "linear" }, "showPoints": "auto", "spanNulls": false, "stacking": { "group": "A", "mode": "none" }, "thresholdsStyle": { "mode": "off" } }, "mappings": [], "thresholds": { "mode": "absolute", "steps": [ { "color": "green", "value": null }, { "color": "red", "value": 80 } ] } }, "overrides": [] }, "gridPos": { "h": 8, "w": 12, "x": 12, "y": 75 }, "id": 22, "options": { "legend": { "displayMode": "list", "placement": "bottom", "showLegend": true }, "tooltip": { "mode": "single", "sort": "none" } }, "targets": [ { "datasource": "Loki", "editorMode": "builder", "expr": "sum by (service) (count_over_time({env=~\"$env\", service=~\"$service\", risk=\"unknown\"}[$__interval]))", "legendFormat": "{{service}}", "queryType": "range", "refId": "A" } ], "title": "Unknown Risk", "type": "timeseries" } ], "refresh": "30s", "schemaVersion": 38, "style": "dark", "tags": [ "security", "ahnlab", "loki" ], "templating": { "list": [ { "allValue": ".+", "current": { "text": "All", "value": ".+" }, "datasource": "Loki", "includeAll": true, "label": "env", "multi": true, "name": "env", "options": [], "query": "label_values(env)", "refresh": 1, "type": "query" }, { "allValue": ".+", "current": { "text": "All", "value": ".+" }, "datasource": "Loki", "includeAll": true, "label": "service", "multi": true, "name": "service", "options": [], "query": "label_values({env=~\"$env\"}, service)", "refresh": 1, "type": "query" }, { "allValue": ".+", "current": { "text": "All", "value": ".+" }, "datasource": "Loki", "includeAll": true, "label": "risk", "multi": true, "name": "risk", "options": [], "query": "label_values({service=~\"$service\"}, risk)", "refresh": 1, "type": "query" }, { "allValue": ".+", "current": { "text": "All", "value": ".+" }, "datasource": "Loki", "includeAll": true, "label": "syslog_type", "multi": true, "name": "syslog_type", "options": [], "query": "label_values({service=~\"$service\"}, syslog_type)", "refresh": 1, "type": "query" }, { "allValue": ".*", "current": { "text": "All", "value": ".*" }, "includeAll": true, "multi": true, "name": "mds_log_type", "options": [], "query": "system,detection", "type": "custom" } ] }, "time": { "from": "now-24h", "to": "now" }, "timepicker": {}, "timezone": "", "title": "AhnLab Security Overview", "uid": "ahnlab-security", "version": 1, "weekStart": "" }