-
**Describe the bug**
With a time window of more than an hour, we get a timeout on the query. Small time windows for a query are also not really fast, `last 30min = 4min. query time` and `last 15m…
-
Sophos XG firewalls send syslog RFC5424 by default, refer to: https://docs.sophos.com/nsg/sophos-firewall/18.5/Help/en-us/webhelp/onlinehelp/AdministratorHelp/SystemServices/LogSettings/index.html
…
-
Our Checkpoint integration experiences errors when indexing the events below. Log samples available on request.
1.
```
# field name cannot be an empty string
1 2021-10-12T20:43:19Z NPMDCM0000…
-
Please add a new log parser for Sophos Firewall data.
TA: https://splunkbase.splunk.com/app/6187/
Sourcetypes:
* sophos:xg:firewall
* sophos:xg:anti_virus
* sophos:xg:content_filtering
* sopho…
-
**Describe the enhancement:**
Currently the Sophos module supports ingesting logs via udp (default) or tcp.
As of SFOS 18, Sophos XG firewalls support sending logs via udp or secure syslog (TLS)
**…
-
Do we need which to write here the syslog server or the IP address of the Sophos FW device?
Which one should we write? IP or hostname? @preetikr
` For example: | where Computer in **("server1…
-
While preparing packages for the ECS updates I found that duplicated field definitions now caused indeterminate outcomes from `elastic-package build`. This prevented tests from passing while doing the…
-
Currently this repository contains 183 appliances, the GNS3 community site shows only 138 appliances. Therefore 45 appliances are not shown and won't get any attention.
Please ask the manager of g…
-
The integration has stopped working over the last 2 updates (0.0.24 and 0.0.25). It gets stuck at initializing when reloading thru the HA integration UI screen and if you remove and try to reinstall …
-
Hello,
I tried to Set up Catalyst with the respective Guide at https://catalyst-soar.com/docs/catalyst/admin/install and run into some Issues with my Setup, I believe.
I'm getting the Error:
![imag…