diff --git a/conf.d/11-firewall.conf b/conf.d/11-firewall.conf index 9998bd49495d18b344d41e966f52da836f252632..efcf07472133f819ce3c7eaa99274bfc1f98e3a3 100644 --- a/conf.d/11-firewall.conf +++ b/conf.d/11-firewall.conf @@ -94,7 +94,6 @@ filter { } mutate { add_field => { "[event][dataset]" => "firewall"} - rename => { "[message]" => "[event][original]"} update => { "[network][direction]" => "%{[network][direction]}bound" } update => { "[network][type]" => "ipv%{[network][type]}" } }