Hi all, running Graylog 4.3.15 on Ubuntu 20.04. receiving Windows eventlogs from WEF/WEC with NxLog. I’d like to show how hjave Graylog add the IP of the log source host to the message for me. so not replace the source which is currently the source DNS name but have it essentially do the DNS resolve to IP and enrich the message. Has anyone done this?
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.