nnovaes
nnovaes
Whenever I start a job it sits for a long time in the queue before it runs. Is there any place I can configure for jobs to start immediately, or,...
## Description These updates correct assignment of versa fields to the ECS model. It also adds back versa specific fields that do not map to ECS into a separate [labels][all]...
For certain hostnames the [host split enrichment](https://github.com/Cargill/OpenSIEM-Logstash-Parsing/blob/1.0/config/enrichments/09_host_split.conf) is causing the pipeline to be blocked until grok timesout. [2022-06-10T15:54:58,563][WARN ][org.logstash.plugins.pipeline.PipelineBus][processor] Attempted to send event to 'enrichments' but that address was unavailable....
## Describe the bug Meraki.fw, spectracom, ubiquiti ... parsers are showing dissect errors ``` [2021-07-12T18:44:42,112][WARN ][org.logstash.dissect.Dissector][proc_syslog_log_security_cisco.meraki.fw] Dissector mapping, pattern not found {"field"=>"message", "pattern"=>"%{?data} {%{?data}} %{rest_msg}", [2021-07-12T18:52:46,347][WARN ][org.logstash.dissect.Dissector][proc_syslog_log_audit_spectracom.ntp] Dissector mapping, pattern...
## Describe the bug Cisco DNA center sends some logs with startTime containing an invalid timestamp (i.e. `starttime: 6311354712085878`). This timestamp is reported in microseconds, but is far in the...
## User Story - details There should be an enrichment checking that only permitted values are stored in ECS fields that have a predefined set of values, so those fields...
## User Story - details It may be taken at low priority, but this can make our life easier https://github.com/magnusbaeck/logstash-filter-verifier ## Tasks - [ ] - [ ] ## X-Reference...