From e1932ff01ed79ad2f89b555abacc93d18842f29c Mon Sep 17 00:00:00 2001
From: Zafer Balkan <zafer@zaferbalkan.com>
Date: Wed, 20 Dec 2023 11:28:40 +0200
Subject: [PATCH] Used asterisk for Defender Firewall log name (#2671)

Log name is configurable. MD Docs recommend a log file per profile: https://learn.microsoft.com/en-us/windows/security/operating-system-security/network-security/windows-firewall/configure-logging?tabs=intune
---
 config/acquis_win.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/config/acquis_win.yaml b/config/acquis_win.yaml
index 86d233cca..b198ac645 100644
--- a/config/acquis_win.yaml
+++ b/config/acquis_win.yaml
@@ -10,7 +10,7 @@ labels:
 ---
 ##Firewall
 filenames:
-  - C:\Windows\System32\LogFiles\Firewall\pfirewall.log
+  - C:\Windows\System32\LogFiles\Firewall\*.log
 labels:
   type: windows-firewall
 ---
@@ -28,4 +28,4 @@ use_time_machine: true
 filenames:
   - C:\inetpub\logs\LogFiles\*\*.log
 labels:
-  type: iis
\ No newline at end of file
+  type: iis