This message originated from Cribl Community Slack.
Click here to view the original link.
Hi, is it possible to capture the originating IP for syslog sources? My customer has a specific requirement.
Solved
Syslog Sources Not Capturing Originating IP Address
Best answer by xpac xpac
you already do, capture some events, click the little wheel icon, select "show internal fields", there's one called
__SyslogIpPort or the like... it has the client IPEnter your E-mail address. We'll send you an e-mail with instructions to reset your password.
