What is a one sentence summary of your feature request?
syslog host field needs to be changed with FQDN, not IP address
Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.
Requesting to have a setting that can select FQDN or IP for whichever the environment uses. Our environment the logs are sent to a VIP on a port which then sends them to sentinel. In our case it expects FQDN not the IP.
How do you currently solve the challenges you have by not having this feature?
We had to have our log team make changes on their side until we have a feature available.
While we started to look into this feature request, to make sure we fully understand the scenario you’re aiming to achieve, we’ll need a bit more detail. Therefore, could you please elaborate on your use case and, if possible, share a specific example?
This will help us get a complete picture and provide the best possible solution.
The logging on the old version of your software used to push logs to the SEIM as hostname. The new logging pushes logs via the IP. The ability to change the way logs are being sent would be good. Eduard Alexandru Nut was the technician that helped me open this feature request. You may want to follow up with him for more information
As an update, I would like to inform you that this request has been submitted internally for further technical investigation and it will take some time.
Upon conclusion, we will notify you.