kares
commented
3 years ago // cc @ebeahan @webmat if you get a chance to review these, please - left some remarks in the comments ^^^
Closed kares closed 3 years ago
kares
commented
3 years ago // cc @ebeahan @webmat if you get a chance to review these, please - left some remarks in the comments ^^^
Second part of https://github.com/logstash-plugins/logstash-patterns-core/pull/293 to ECS-ize firewalls patterns.
There's still 2 types of unrelated captures here: various
CISCO...patterns andNETSCREENSESSIONLOG.Beats has no support for the type of Net-Screen logs we handle, as for the CISCO logs most (and more but not all) are supported as the Cisco Asa firewall fileset.