[Oisf-users] pcap context around alert

[erik clark]

Right now, I am getting my packets into my eve.json log, but they dont
reflect what is in the payload and payload_printable. Why is this true, and
how do I normalize the them?

Big thanks to everyone who helped me get my packets into pcap format :)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20170221/ab32a3e6/attachment.html>