Skip to content

Commit

Permalink
Fix FQDN aggregation for Port Sweep Firewall rule
Browse files Browse the repository at this point in the history 
This is similar to PR 8764, and this will undo a change from a recent
commit (a7132b0) and restore the "Port Sweep" Firewall analytics rule
FQDN aggregation. Currently the rule summarizes by the FQDN, which
results in the query returning zero results unless the
"MinimumDifferentHostsThreshold" is set to 0, thereby making the
parameter useless.
  • Loading branch information
Ricardo Tolentino committed Aug 25, 2023
1 parent 4536a3f commit 47edd6f
Show file tree
Hide file tree
Showing 2 changed files with 473 additions and 7 deletions.
Loading

0 comments on commit 47edd6f

Please sign in to comment.