Dec 18 2020 11:23 PM
Hi Guys
I would like to setup an alert to get notified if an external connected device (E.g. Cisco ASA) loose connection with RSyslog/Sentinel. I wonder what field in the table I can pull with the logic and would be great if some one can share a sample KQL query.. thanks