Any best ways to filter out the heartbeat logs from Azure
Tags:
NXLog Community Edition
#1
lauzeroo
I noticed that many Azure heartbeat logs will send to SIEM, if i want to config the nxlog output file, how to filter it out and make it not send the logs to SIEM? Thanks.
Does this example work out for you?
if $raw_event =~ /dropme/ %WARN_DROP%
taken from here: https://docs.nxlog.co/ce/current/index.html#general-directives
