Skip to content

Commit

Permalink
Cherry-pick elastic#16889 to 7.6: [Filebeat] Cisco FTD issues parsing…
Browse files Browse the repository at this point in the history 
… Security Event messages (elastic#16982)

* [Filebeat] Cisco FTD issues parsing Security Event messages (elastic#16889)

* Fix grok and kv split bugs

* Fix optional whitespace for field name separator

(cherry picked from commit 912eac4)

* [Filebeat] Add changelog entry for Cisco fixes (elastic#17124)

* Add changelog entry for Cisco fixes

* move new entry to the end of the changelog section

* Remove stray changelog entries from cherry-pick
  • Loading branch information
Andrew Stucki authored Apr 4, 2020
1 parent 7b3cd34 commit da93eb5
Show file tree
Hide file tree
Showing 6 changed files with 1,406 additions and 1,276 deletions.
2 changes: 2 additions & 0 deletions CHANGELOG.next.asciidoc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -52,6 +52,8 @@ https://github.com/elastic/beats/compare/v7.0.0-alpha2...master[Check the HEAD d
- Fix `elasticsearch.gc` fileset to not collect _all_ logs when Elasticsearch is running in Docker. {issue}13164[13164] {issue}16583[16583] {pull}17164[17164]
- Fixed a mapping exception when ingesting Logstash plain logs (7.4+) with pipeline ids containing non alphanumeric chars. {issue}17242[17242] {pull}17243[17243]
- Fix `elasticsearch.audit` data ingest pipeline to be more forgiving with date formats found in Elasticsearch audit logs. {pull}17406[17406]
- Fix issue where autodiscover hints default configuration was not being copied. {pull}16987[16987]
- Fixed various Cisco FTD parsing issues. {issue}16863[16863] {pull}16889[16889]

*Heartbeat*

Expand Down
Loading

0 comments on commit da93eb5

Please sign in to comment.