Skip to content

[panw] Ensure empty NAT IP is not appended to related items #9333

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Mar 12, 2024
Merged

[panw] Ensure empty NAT IP is not appended to related items #9333

merged 2 commits into from
Mar 12, 2024

Conversation

@taylor-swanson
Copy link
Contributor

@taylor-swanson taylor-swanson commented Mar 11, 2024
edited
Loading

Proposed commit message

  • Ensure that the NAT ip and port are removed prior to other processors if they are unset (values of '0.0.0.0' and '0', respectively)
  • Update test files, sample_event, and readme

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.

How to test this PR locally

cd packages/panw elastic-package test

Related issues
@taylor-swanson
[panw] Ensure empty NAT IP is not appended to related items
28b932a 
- Ensure that the NAT ip and port are removed prior to other processors if they are unset (values of '0.0.0.0' and '0', respectively) - Update test files, sample_event, and readme
@taylor-swanson taylor-swanson added bug Something isn't working, use only for issues Integration:panw Palo Alto Next-Gen Firewall Team:Security-Deployment and Devices DEPRECATED Deployment and Devices Security team [elastic/sec-deployment-and-devices] labels Mar 11, 2024
@taylor-swanson taylor-swanson self-assigned this Mar 11, 2024
@elasticmachine
Copy link

elasticmachine commented Mar 11, 2024

🚀 Benchmarks report

To see the full report comment with /test benchmark fullreport
@elasticmachine
Copy link

elasticmachine commented Mar 11, 2024

💚 Build Succeeded

cc @taylor-swanson
@elastic-sonarqube
Copy link

elastic-sonarqube bot commented Mar 11, 2024

Quality Gate passed Quality Gate passed

Kudos, no new issues were introduced!

0 New issues
0 Security Hotspots
100.0% 100.0% Coverage on New Code
0.0% 0.0% Duplication on New Code

See analysis details on SonarQube
@taylor-swanson taylor-swanson marked this pull request as ready for review March 11, 2024 19:22
@taylor-swanson taylor-swanson requested a review from a team as a code owner March 11, 2024 19:22
@elasticmachine
Copy link

elasticmachine commented Mar 11, 2024

Pinging @elastic/sec-deployment-and-devices (Team:Security-Deployment and Devices)
jrmolin
jrmolin approved these changes Mar 12, 2024
View reviewed changes
Copy link
Contributor

@jrmolin jrmolin left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So this was happening too late in the pipeline?
@taylor-swanson
Copy link
Contributor Author

taylor-swanson commented Mar 12, 2024

So this was happening too late in the pipeline?

Correct, the remove processors were at the end, but there were some append processors before it that added the nat ip to related.ip.
@taylor-swanson taylor-swanson merged commit 97ac856 into elastic:main Mar 12, 2024
@taylor-swanson taylor-swanson deleted the bugfix/panw-nat-ip branch March 12, 2024 15:05
@elasticmachine
Copy link

elasticmachine commented Mar 12, 2024

Package panw - 3.23.1 containing this change is available at https://epr.elastic.co/search?package=panw
gizas pushed a commit that referenced this pull request Mar 13, 2024
@taylor-swanson @gizas
[panw] Ensure empty NAT IP is not appended to related items (#9333)
2358c28 
- Ensure that the NAT ip and port are removed prior to other processors if they are unset (values of '0.0.0.0' and '0', respectively) - Update test files, sample_event, and readme
@marioschaefer marioschaefer mentioned this pull request Mar 25, 2024
Merged
4 tasks
qcorporation pushed a commit that referenced this pull request Feb 3, 2025
@taylor-swanson @gizas
[panw] Ensure empty NAT IP is not appended to related items (#9333)
39ed9e0 
- Ensure that the NAT ip and port are removed prior to other processors if they are unset (values of '0.0.0.0' and '0', respectively) - Update test files, sample_event, and readme
qcorporation pushed a commit that referenced this pull request Feb 4, 2025
@taylor-swanson @gizas
[panw] Ensure empty NAT IP is not appended to related items (#9333)
ba0168f 
- Ensure that the NAT ip and port are removed prior to other processors if they are unset (values of '0.0.0.0' and '0', respectively) - Update test files, sample_event, and readme
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

bug Something isn't working, use only for issues Integration:panw Palo Alto Next-Gen Firewall Team:Security-Deployment and Devices DEPRECATED Deployment and Devices Security team [elastic/sec-deployment-and-devices]

3 participants

@taylor-swanson @elasticmachine @jrmolin