Hi
I am using Flex Regex File Connector.
My example events:
CEF:0|Vendor2|Product2|2.0|5678|Event2|8|dvc=10.0.0.1 spt=5678 dpt=443 request=https://another-example.com
CEF:0|Vendor3|Product3|3.0|9999|Event3|12|dvc=172.16.0.1 spt=9999 dpt=22 request=https://third-example.com
CEF:0|Vendor4|Product4|4.0|4321|Event4|3|dvc=192.168.0.100 spt=4321 dpt=8080 request=https://fourth-example.com
CEF:0|Vendor1|Product1|1.0|1234|Event1|5|dvc=192.168.1.1 spt=1234 dpt=80 request=https://example.com
Everything works fine, but for some reason the maximum priority for each event is 2.
Please tell me what causes the criticality of the event and what I need to change for the configuration file so that, for example, if instead of "Event 1" there is "An account failed to log on", then it will change priority to 8 or 9 ??