Wazuh | Mailing List

Hello everyone. I encountered a similar problem, after trying to reinstall I didn't even have an

ok, good to know that ignore is for the whole rule. So, How can I do for get Only one alert level 15

Hi Octavio, Thank you for the update and for sharing the GitHub issue link. That's great news! I

Hi. Unfortunately, this is a limitation of the Vulnerability Detection module refactor carried out

Hello Rammohan, From the logs you shared, it shows your agent cannot reach the wazuh server on 98.130

Hello Jan: I think is pretty clear that there is no indexation because filebeat cannot connect to the

Hi Team, The issue has been resolved. Thanks a lot for your support. Regards, Vignesh On Wednesday,

Hi ganesh, Please share an update on this so we can continue assisting you further. On Sunday, May 4,

Hi Sérgio, Please share an update on this so we can continue assisting you further. Regards, Hasitha

Hello Ariel, Thank you for your response. As requested, here is the information: Operating System:

Hi Muhammad, Yes, you are correct, currently we do not have filtering options available in the remote

Hi, Is it feasible to use the comma "," to add multiple time's to the rule? Regards, On

Hi, There is a problem with the block weekday this field does not accept a range of days, in the

I'm using the <weekday> tag in a rule, but I get an error when saving it when I follow the

Hi Emre Yes, troubleshooting helps resolve connection issues between the server and the indexer. I

Hi Francisco! We have an official guide to upgrade Wazuh. Have you followed this? The "Wazuh

On Tuesday, May 13, 2025 at 1:08:08 PM UTC-4 Milan Patel wrote: Hello wazuh team, can we turn off the

Hi Grzegorz For a high availability (HA) setup of Wazuh Indexer, you need at least 3 nodes to avoid

Hello, Wazuh has predefined decoders and rules for Cisco devices, you can check them out here. Beyond

Hi team, I have wazuh 4.11.2 and I did a script to update a CDB list on the way. The issue is that is

Hello Mr. VR, I'm glad you were able to resolve the issue with vulnerability detection. It would

Hi, Thank you for you reply. My goal with this changes is to receive syslog messages sent by a

Dear Team, I have deployed Wazuh 4.11.2 on a server as an all-in-one architecture. Indexer and Wazuh

Dear Team, I have completed the LDAP config. Now it is working fine. Thanks for the support. On

Hi, From your message, I take it that you are receiving e-mail notifications for some of your Wazuh

And remember put this section in "yes" to work properly. <email_notification>yes</

Henry, You should be able to do that by following the documentation here: https://documentation.wazuh

Hi Константин Курандин, In some cases, especially involving file creation events, you may notice: An

Hi, Based on the configuration you've shared, it appears that both the Wazuh manager settings and

Hi Miguel, We get two different alerts when an agent gets disconnected. Rule 504: Wazuh agent