[Bro-Dev] [JIRA] (BIT-944) @bro-meta index in ES writer

Seth Hall (JIRA) jira at bro-tracker.atlassian.net
Mon Mar 23 08:35:00 PDT 2015

    [ https://bro-tracker.atlassian.net/browse/BIT-944?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=20100#comment-20100 ] 

Seth Hall commented on BIT-944:

Yep, it's going to need to get rescheduled.

> @bro-meta index in ES writer
> ----------------------------
>                 Key: BIT-944
>                 URL: https://bro-tracker.atlassian.net/browse/BIT-944
>             Project: Bro Issue Tracker
>          Issue Type: Problem
>          Components: Bro
>    Affects Versions: git/master
>            Reporter: Seth Hall
>            Priority: Low
>             Fix For: 2.5
> The elasticsearch writer isn't creating/modifying the required (for Brownian) @bro-meta index when using the ReLog script to import old logs because rotation is disabled when importing logs.  For now the right answer is to probably just leave off out the start and end fields and write to the index in the UpdateIndex method if rotation is disabled.

This message was sent by Atlassian JIRA

More information about the bro-dev mailing list