[Bro-Dev] [JIRA] (BIT-944) @bro-meta index in ES writer
Jon Siwek (JIRA)
jira at bro-tracker.atlassian.net
Tue Mar 17 10:53:00 PDT 2015
[ https://bro-tracker.atlassian.net/browse/BIT-944?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=20001#comment-20001 ]
Jon Siwek commented on BIT-944:
-------------------------------
Vlad or Seth, up to you whether to re-schedule this ticket for 2.5.
> @bro-meta index in ES writer
> ----------------------------
>
> Key: BIT-944
> URL: https://bro-tracker.atlassian.net/browse/BIT-944
> Project: Bro Issue Tracker
> Issue Type: Problem
> Components: Bro
> Affects Versions: git/master
> Reporter: Seth Hall
> Priority: Low
> Fix For: 2.4
>
>
> The elasticsearch writer isn't creating/modifying the required (for Brownian) @bro-meta index when using the ReLog script to import old logs because rotation is disabled when importing logs. For now the right answer is to probably just leave off out the start and end fields and write to the index in the UpdateIndex method if rotation is disabled.
--
This message was sent by Atlassian JIRA
(v6.4-OD-15-055#64014)
More information about the bro-dev
mailing list