[Bro] A question on barnyard2 integration
jlay at slave-tothe-box.net
Tue Jul 29 10:32:11 PDT 2014
Perfect...thanks so much Seth.
Sent from my iPhone
> On Jul 29, 2014, at 11:14, Seth Hall <seth at icir.org> wrote:
>> On Jul 29, 2014, at 12:50 PM, James Lay <jlay at slave-tothe-box.net> wrote:
>> Will I need to add an additional item? Or will bro pipe the barnyard2
>> data automatically to elasticsearch? Thanks again.
> If you don't specify to send the barnyard log to ES, then it won't go (unless you don't specify which logs to send and all logs are sent). The Log::ID for the barnyard2 log is: Barnyard2::LOG
> Seth Hall
> International Computer Science Institute
> (Bro) because everyone has a network
More information about the Bro