Hello community ,
I'm facing a issue that my zscaler logs are ingested with a latency around 60 miutes and more.
The difference between ingested timestamp and event timestamp is around 560 minutes.
Who can tel this can be due to what exactly ?
Thanks for help
Ingestion latency
- Silver 2
+11This post, while focus on timestamps,includes a detailed section on how to analyze latency (as well as time based misconfigurations) - https://medium.com/@thatsiemguy/fix-rfc3164-timestamps-with-bindplane-for-enterprise-fb96dd16d015
Also this doc: https://cloud.google.com/chronicle/docs/detection/timestamp-definitions
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.