From 2cbb38d80d343cc22eae3304b9bb74a1ba307513 Mon Sep 17 00:00:00 2001
From: Andrew <a@3ilson.com>
Date: Sat, 7 Sep 2019 12:18:59 -0400
Subject: [PATCH] Update pfv100.grok

---
 pfv100.grok | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pfv100.grok b/pfv100.grok
index 2e37320..1d3596f 100644
--- a/pfv100.grok
+++ b/pfv100.grok
@@ -50,4 +50,4 @@ PF_APP_ERROR webConfigurator (%{DATA:pf_ACTION}) for \'(%{DATA:pf_USER})\' from
 PF_APP_GEN (%{GREEDYDATA:pf_ACTION})
 
 # SURICATA
-PF_SURICATA %{SPACE}\[%{NUMBER:ids_gen_id}:%{NUMBER:ids_sig_id}:%{NUMBER:ids_sig_rev}\]%{SPACE}%{GREEDYDATA:ids_desc}%{SPACE}\[Classification:%{SPACE}%{GREEDYDATA:ids_class}\]%{SPACE}\[Priority:%{SPACE}%{NUMBER:ids_pri}\]%{SPACE}{%{WORD:ids_proto}}%{SPACE}%{IP:ids_src_ip}:%{NUMBER:ids_src_port}%{SPACE}->%{SPACE}%{IP:ids_dest_ip}:%{NUMBER:ids_dest_port}
+SURICATA %{SPACE}\[%{NUMBER:ids_gen_id}:%{NUMBER:ids_sig_id}:%{NUMBER:ids_sig_rev}\]%{SPACE}%{GREEDYDATA:ids_desc}%{SPACE}\[Classification:%{SPACE}%{GREEDYDATA:ids_class}\]%{SPACE}\[Priority:%{SPACE}%{NUMBER:ids_pri}\]%{SPACE}{%{WORD:ids_proto}}%{SPACE}%{IP:ids_src_ip}:%{NUMBER:ids_src_port}%{SPACE}->%{SPACE}%{IP:ids_dest_ip}:%{NUMBER:ids_dest_port}
-- 
GitLab