Hello,
I'm aware of How to add hostname to logs that normally do not contain hostname? but that is not applicable to my case.
My router's firewall sends syslog message but they only contain the IP of the host causing the rule being triggered.
I could provide IP<>hostname mapping by different means to ELKI.
How to manipulate the log message on ELKI, so that it contains the IP owner's hostname?
Thx for the quick response.
great knowing that there is an option.
I found a script in the MikroTik forum, sharing DHCP clients hostnames using SNMP.
Need to figure out how to combine these things but reads feasible
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.