Skip to content

Commit e760962

Browse files
ylladayllada
committed
fix(sophos): update filter correct syslog priority pattern
1 parent 0246b05 commit e760962

File tree

1 file changed

+3
-3
lines changed

1 file changed

+3
-3
lines changed

filters/sophos/sophos_xg_firewall.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,4 +1,4 @@
1-
# Sophos_XG filter, version 3.0.2
1+
# Sophos_XG filter, version 3.0.3
22
# Supports SF 20.0 version log types
33
# See manual: https://docs.sophos.com/nsg/sophos-firewall/20.0/pdf/sf-syslog-guide-20.0.pdf
44
# and documentation https://docs.sophos.com/nsg/sophos-firewall/20.0/Help/en-us/webhelp/onlinehelp/AdministratorHelp/Logs/TroubleshootingLogs/LogFileDetails/index.html#https-ftp-waf
@@ -11,7 +11,7 @@ pipeline:
1111
- grok:
1212
patterns:
1313
- fieldName: log.syslogPriority
14-
pattern: '\<{{.data}}\>'
14+
pattern: '\<{{.integer}}\>'
1515
- fieldName: log.syslogVersion
1616
pattern: '{{.integer}}'
1717
- fieldName: log.syslogDeviceTime
@@ -29,7 +29,7 @@ pipeline:
2929
- grok:
3030
patterns:
3131
- fieldName: log.syslogPriority
32-
pattern: '\<{{.data}}\>'
32+
pattern: '\<{{.integer}}\>'
3333
- fieldName: log.restData
3434
pattern: '{{.greedy}}'
3535
source: raw

0 commit comments

Comments
 (0)