diff --git a/11-pf.conf b/11-pf.conf index e4675ac4d59ea5b657d33ace31d180e21986db43..09a25d32a8f08426dbd7ca80bedaef2163a75e6b 100644 --- a/11-pf.conf +++ b/11-pf.conf @@ -28,7 +28,7 @@ filter { } if [prog] =~ /^suricata/ { mutate { - add_tag => [ "SuricataIDPS" ] + add_tag => [ "Suricata" ] } grok { patterns_dir => ["/etc/logstash/conf.d/patterns"]