List of Contributions

Peter Fischer

Contact Details

My Content

1 to 4 of 4 total
Posted By Peter Fischer Feb 25, 2021 11:20 AM
Found In Egroup: IBM Security QRadar
\ view thread
Hi Colin. Thank you for your message. We have controlled with tcpdump. The transport protocol is TCP. We have configured 16kb and increased this to 24kb. Unfortunately without succes. Cheers Peter ------------------------------ Peter Fischer ------------------------------
Posted By Peter Fischer Feb 24, 2021 4:27 AM
Found In Egroup: IBM Security QRadar
\ view thread
Hi Karl The problem is, we don't have all Information in payload. For example: On the Server in register details are more informations: The informations RemoteMachineAccount and RemoteUserAccount are intresting for us. The WinCollect does not send the relevant information. We have checked this with tcpdump. ...
Posted By Peter Fischer Feb 23, 2021 8:48 AM
Found In Egroup: IBM Security QRadar
\ view thread
Hi, We would like to send the event data of the logs "Base-Filtering-Engine (BFE) Connections Operational" and "WinNat" to QRadar. The data arrives at QRadar. However, only the data that is visible in the event log under General. We do not receive the data that is visible in the event log under Details. ...
Posted By Peter Fischer Jan 15, 2020 5:43 AM
Found In Egroup: IBM Security QRadar
\ view thread
Hi We've been using Qradar for several months now. We want to move data to an archive data node. What do we have to set? can we set how old the data are that's moved to the archive node? Thanks for your help ------------------------------ Best regards, Peter Fischer ------------------------------