add s7comm upload/download log support

idaholab · Oct 10, 2022 · 106bf61 · 106bf61
1 parent 515c170
commit 106bf61
Showing 1 changed file with 0 additions and 3 deletions.
diff --git a/logstash/pipelines/zeek/12_zeek_normalize.conf b/logstash/pipelines/zeek/12_zeek_normalize.conf
@@ -1197,9 +1197,6 @@ filter {
   if ([zeek][tftp][fname])                       { mutate { id => "mutate_merge_normalize_zeek_tftp_fname"
                                                            merge => { "[file][path]" => "[zeek][tftp][fname]" } } }
 
-  if ([zeek][tftp][fname])                       { mutate { id => "mutate_merge_normalize_zeek_tftp_fname"
-                                                           merge => { "[file][path]" => "[zeek][tftp][fname]" } } }
-
   # as we already did a bunch of work parsing out smb.host, smb.share and smb.filename in 11_zeek_logs, use those here as well
   # this should cover smb_files, smb_cmd and smb_mapping
   if [smb] {