Who Me Too'd this topic

Hi

I Send estreamer from FMC 6.7  to Splunk 8.1 every things work fine  except that I cant send original client ip address and HTTP response code.

extended option is enable in estreamer.conf:

"archiveTimestamps": true,
"eventExtraData": true,
"extended": true,
"impactEventAlerts": true,
"intrusion": true,
"metadata": true,
"packetData": true

please help me

thanks