[Bro] NSQ plugin getting deprecated in 2.5

Azoff, Justin S jazoff at illinois.edu
Mon Sep 19 09:15:40 PDT 2016

> On Sep 19, 2016, at 11:59 AM, Vlad Grigorescu <vladg at illinois.edu> wrote:
> Generalizing it might be a bit tricky. For example, ElasticSearch needs
> to post to$log_name, while NSQ needs to add a
> line containing the log_name before each log line.

That wasn't really NSQ that required that, it was whatever was pulling the records out of NSQ and pushing them into ES that wanted that.

I think the new logging ext stuff that was added for kafka would make that extra record redundant now.

- Justin Azoff

More information about the Bro mailing list