Hello Every one
I have a problem in protocol detection in splunk logs!
I see bittorrent Every where in my logs and the traffic is not a bittorrent one!
But i track the traffic and its between a network device and a monitoring tool.
I have DPI (deep packet inspection) installed as an Aux but it seems to be a wrong app detection in splunk.
what should i do?
is there any help with that?
#SPLUNK