I am trying to be alerted whenever a port security issue comes up, however I can only view content on {{context.hits}}. The table for the syslog message contains fields such as @timestamp, @version, host, message
I am only looking to get message for the email message. How do I do that?
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.