Hello, I am unable to display the info on the app. I already configured the port 514 and source type as srx_log and set the edit security log info as this:
root# show
mode stream;
format sd-syslog;
source-address 192.168.1.1;
stream splunk {
format sd-syslog;
host {
192.168.1.2;
port 514;
}
}
if I change the source type from srx_log to syslog, results appear under the normal search
any help will be appreciated
... View more