Maintained with ☕️ by
IcePanel logo

Chronicle - July 1st, 2021 [Change, Feature]

Share

Services

## Feature [Asset Namespaces](https://cloud.google.com/chronicle/docs/investigation/asset-namespaces) The asset namespaces feature enables you to classify categories of assets sharing a common network environment, or namespace, and then perform searches for those assets within the Chronicle user interface based on that namespace. See also the [Linux Forwarder](https://cloud.google.com/chronicle/docs/install/forwarder-linux#namespaces) documentation for information on how to configure the Forwarder to add namespaces to your security data before it is ingested into your Chronicle account. ## Change Linux Forwarder Updates The Linux Forwarder has been enhanced with the following additional capabilities: [Disk Buffering](https://cloud.google.com/chronicle/docs/install/forwarder-linux#disk%5Fbuffering)—Disk buffering enables you to buffer backlogged messages to disk as opposed to memory. The backlogged messages can be stored in case the forwarder crashes or the underlying host crashes. [Regular Expression Filters](https://cloud.google.com/chronicle/docs/install/forwarder-linux#regular%5Fexpression%5Ffilters)—Regular expression filters enable you to filter logs based on regular expression matches. [Arbitrary labels](https://cloud.google.com/chronicle/docs/install/forwarder-linux#arbitrary%5Flabels)—Use labels to attach arbitrary metadata to logs using key and value pairs. [Namespaces](https://cloud.google.com/chronicle/docs/install/forwarder-linux#namespaces)—Use namespace labels to identify logs from distinct network segments and to deconflict overlapping IP addresses. [Kafka Input](https://cloud.google.com/chronicle/docs/install/forwarder-linux#kafka%5Finput)—You can ingest data from Kafka topics just as you can for syslog. Consumer groups are leveraged to enable you to deploy up to 3 Forwarders and pull data from the same Kafka topic.