We are using the Logs API with AlienVault and see long gaps between logs being ingested by the AlienVault sensor. Sometimes it will go several hours without collecting any logs, despite having a scheduled task to collect them every 4 minutes.
I’m not clear if this is normal behaviour for the API, whether there is a service issue, or whether we have an issue with the AlienVault end. We have a support case open with AlienVault as well to investigate that side.
I would appreciate any information regarding the normal behaviour of this API or any indications that there’s a service issue going on with it.