mstopa-splunk

all right, for now I'm closing this issue as solved

hi @JosepSirt can you send a pcap file through Splunk support or to [email protected]?

hi @JosepSirt thank you for the email. It does not include raw messages, but you can easily fetch them: ``` Set the variable SC4S_SOURCE_STORE_RAWMSG=yes in env_file and restart sc4s. This...

@JosepSirt if the vendor has docs with description and examples we can start with that also while waiting for raw messages. If not, can we close this issue and reopen...

hi @wozzies please send sample events through Splunk support or to [email protected] . Events can be anonymised

hello @wozzies we will release it on Monday, I will let you know which version to upgrade to

released in v3.25.0

Hi @lakshman237, I've begun working on this issue. I've read both the Splunk add-on source config files and its documentation, as well as the vendor documentation. What's still unclear to...

Hi @lakshman237 do you have any updates?

Hi @lakshman237 , thank you, should we keep this issue open? If you'd like to further discuss SC4S support and challenges in this process please send me a message to...