What is the sc4s version ?
3.14.0
Is there a pcap available?
No
What the vendor name?
Palo Alto Networks
What's the product name?
panos
Feature Request description:
additional parsing for Decryption and Authentication log subtypes
Should it support TCP or UDP?
N/A
Do you want to have it for local usage or prepare a github PR?
Ideally, a PR.
Below is an updated app-parser for the 'app-syslog-pan_panos.conf' configuration file, that I have implemented successfully:
Changes include the addition of extractions for Decryption and Authentication logs, which subsequently fixes the hostname extraction from the "pan_forwarder" field.
What is the sc4s version ? 3.14.0 Is there a pcap available? No What the vendor name? Palo Alto Networks What's the product name? panos Feature Request description: additional parsing for Decryption and Authentication log subtypes Should it support TCP or UDP? N/A Do you want to have it for local usage or prepare a github PR? Ideally, a PR.
Below is an updated app-parser for the 'app-syslog-pan_panos.conf' configuration file, that I have implemented successfully:
Changes include the addition of extractions for Decryption and Authentication logs, which subsequently fixes the hostname extraction from the "pan_forwarder" field.