Does the cloudwatch wodle support wildcards?
37 views
Skip to first unread message
Robert Sitro
Jul 5, 2022, 9:40:59 AM7/5/22
to Wazuh mailing list
For example in the log group tag, can I do /log_group_env/* ?
Manuel Pedro Gomez Castro
Jul 5, 2022, 11:15:32 AM7/5/22
to Wazuh mailing list
Hello! Thank you for reaching out to us!
According to our documentation, it seems like the tag Service\aws_log_groups does not allow for regular expressions.
However, you may add as many groups as needed as a comma separated list!
The only tag that accepts regex for the aws-s3 wodle would be bucket\discard_regex. You may learn more about regex and sregex syntax here!
https://documentation.wazuh.com/current/user-manual/ruleset/ruleset-xml-syntax/regex.html
I hope this helps!
https://documentation.wazuh.com/current/user-manual/ruleset/ruleset-xml-syntax/regex.html
I hope this helps!
Reply all
Reply to author
Forward
0 new messages