Hello,
This issue has been sorted out and the to_syslog_snare() formatter should
now produce more snare compliant output, to be released in the next
version.
Since there were a couple other users complaining earlier, thought I'd
mention that if there is interest , I'll provide a snapshot version t
I am attempting to use the SNARE Output option to forward events to our SIEM.
The problem I am encountering is Nxlog replaces the "Snare Event Counter" field
with "N/A". This is causing the events being sent to the SIEM to be dropped
since the parser is looking for an integer instead of the st
