I have a problem with Rule Enrichment.
The error_SecRulesEnrich gives these messages after analysing the data from a rule which has a lot of data (at least by APP-ID):
I am connected to a firewall, and i can analyse in Expedition the applications (By APP-ID) and getting results.
So i am confused why it sais, no traffic found.
MySQL is working, the "expedition internal checks" are all green.
The Rule Enrichment is processing and results in "Completed"
Also i rebooted the VM.
Solved! Go to Solution.