|
|
|
@ -163,6 +163,8 @@ Metadata::
|
|
|
|
# payload-buffer-size: 4kb # max size of payload buffer to output in eve-log
|
|
|
|
# payload-buffer-size: 4kb # max size of payload buffer to output in eve-log
|
|
|
|
# payload-printable: yes # enable dumping payload in printable (lossy) format
|
|
|
|
# payload-printable: yes # enable dumping payload in printable (lossy) format
|
|
|
|
# packet: yes # enable dumping of packet (without stream segments)
|
|
|
|
# packet: yes # enable dumping of packet (without stream segments)
|
|
|
|
|
|
|
|
# http-body: yes # enable dumping of http body in Base64
|
|
|
|
|
|
|
|
# http-body-printable: yes # enable dumping of http body in printable format
|
|
|
|
metadata: yes # add L7/applayer fields, flowbit and other vars to the alert
|
|
|
|
metadata: yes # add L7/applayer fields, flowbit and other vars to the alert
|
|
|
|
|
|
|
|
|
|
|
|
Alternatively to the `metadata` key it is also possible to select the application
|
|
|
|
Alternatively to the `metadata` key it is also possible to select the application
|
|
|
|
|
Eric Leblond
8 years ago
committed by
Victor Julien