From: Eric Leblond Date: Sun, 30 Mar 2025 15:24:35 +0000 (+0200) Subject: dox/userguide: add tx_cnt documentation X-Git-Tag: suricata-8.0.0-rc1~455 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=adfa46ab1c32b752df7eb37d37569aafcc1171d8;p=thirdparty%2Fsuricata.git dox/userguide: add tx_cnt documentation --- diff --git a/doc/userguide/output/eve/eve-json-format.rst b/doc/userguide/output/eve/eve-json-format.rst index 7f76c6972b..710225aabc 100644 --- a/doc/userguide/output/eve/eve-json-format.rst +++ b/doc/userguide/output/eve/eve-json-format.rst @@ -1691,6 +1691,7 @@ Fields * "reason": mechanism that did trigger the end of the flow (include "timeout", "forced" and "shutdown") * "alerted": "true" or "false" depending if an alert has been seen on flow * "action": "pass" or "drop" depending if flow was PASS'ed or DROP'ed (no present if none) +* "tx_cnt": number of transactions seen in the flow (only present if flow has an application layer) * "exception_policy": array consisting of exception policies that have been triggered by the flow: