When creating a new normalization request, please include the following information to accelerate the norm package creation process:

• Name and version of the log source
• Logging documentation for the version of the log source (can be obtained from the device vendor)
• Sample logs from the device (The sample logs can be anonymised before being provided on the request)

Notes: You can use the following query to extract the un-normalized sample logs from the UI of LogPoint

            device_ip='xx.xx.xx.xx' -norm_id=* | norm <ALL:.*> | fields ALL