search

elastic / integrations

Elastic Integrations
https://www.elastic.co/integrations
Other
199 stars 429 forks source link

[Suricata] Missing ECS Field Mappings #7274

Closed MakoWish closed 1 year ago

MakoWish commented 1 year ago

Describe the Issue

The Suricata integration does not currently have mappings for several destination.* and source.* fields and is causing conflicts in the logs-* Data View.

Screenshots

suricata_conflict

elasticmachine commented 1 year ago

Pinging @elastic/security-external-integrations (Team:Security-External Integrations)