Regex mapping for Arbor
We have created a syslog connector for Arbor and we receive the logs but the source address and destination address with their ports are not showing on the on their own fields. The can be seen n the Message field through. Is there a way that I could map the Message field to the source and destination address fields as well as filter to have the right info.
We have been using Arbor for quite a while without any problems. What connector version are you using and which Arbor device/version are you using?
I'm having the same issue with Arbor. It seems that almost every detail of the event are placed on the message field. Can you help me solve this?