Hello,
I have a problem with parsing a payload from a WAF F5.
I have a DLC implemented, my problem is that I send the data to the DLC by TCP protocol, but when I check it at DLC level, with a tcpdump and with wireshark, these are always cut at the same size 2093 bytes.
This doesn't make sense to me because in the Qradar configuration I have a bigger size for TCP connections.
Please someone knows about this or can give me some advice on my case.
Thanks
------------------------------
cristian librero
------------------------------