I am trying to parse and log a specific rule from my fortigate firewall and store in a database.
I have the rule file worked out
my issue is that some records have 40 fields and others have 44 even though it is the same policy it logs differently based on protocol
how can I do the template insert based on 2 different rules?
_______________________________________________
rsyslog mailing list
https://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards
NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.
I have the rule file worked out
my issue is that some records have 40 fields and others have 44 even though it is the same policy it logs differently based on protocol
how can I do the template insert based on 2 different rules?
_______________________________________________
rsyslog mailing list
https://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards
NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.