Comments (2)
I agree I think 1 is a good compromise that increases flexibility without the performance hit.
Also 1 is only really a problem if you have enrichment sources that have data for both ip.src and ip.dst or outerip.src and outerip.dst for example which duplicates the lookup if you're only having capture care about ip.dst for example. So as long as wise has a snappy return for null results this makes perfect sense to me.
from arkime.
This was completed in #2517 https://arkime.com/settings#custom-fields-remap
from arkime.
Related Issues (20)
- offlineInfo ring buffer is not using the first element HOT 3
- Community ID in ICMP Sessions HOT 1
- Can not build using easybutton-build.sh HOT 1
- Multiple Notifiers per Resource
- Parliament Improvements
- New cont3xt integration : "Quad9" for domain/ip block / malicious reputation state
- New cont3xt integration : emailrep.io
- Cont3xt with OIDC crashes while redirecting HOT 4
- 是否能增加汉化版本 或者在哪里进行汉化 HOT 4
- Cont3xt : temporary display of integration processing stats
- Cont3xt : name browser panes
- JA4 DTLS support HOT 1
- Cont3xt : 'skip children' query string support
- Payload Src Hex column has incorrect name Payload Src UTF8
- Scrubbing compressed pcap should change session so it can't be retrieved HOT 1
- header length bug : +opportunity to add custom error handler pages :D HOT 1
- bulk query summary count of parent node[type] vs children[types]
- keyword highlighting within default card / individual card displays
- Disable focus on query input field after query string based search
- Add config variable for max sesssions HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from arkime.