dwbrown_260122
Dec 15, 2016Nimbostratus
Device Version missing from logs
I am sending logs to McAfee ESM and after a system restore and fail-over the ASM is no longer sending the device version in the logs. This is a required field for McAfee. Prior to the crash this field was included in the logs being sent. Without this field it causes the ESM to be unable to parse the data correctly. Has anyone ever seen this?
Example from log: the || is were the device version should be. Dec 14 14:34:12 TR01PPAF5003.mgmt.shoremortgage.com ASM:CEF:0|F5|ASM||Illegal meta character in parameter name|Illegal meta character in parameter name|5|
Thanks for the help.