I'm trying to use splunk stream to analyse a pcap file and it doesn't work. After choosing "PCAP file" in the "Data input"-tab, I'm prompted to create a new configuration. Which means choosing a name and a file, it seems. So I choose a name and a pcap file, but when I click next it says Encountered the following error while trying to save: Invalid configuration specified: 'NoneType' object has no attribute 'group' . This happens whether I tick any of the other boxes like "System Time". What am I doing wrong? OS is Ubuntu 18.04, browser is firefox, in case that matters.
... View more