[Bro] A question on barnyard2 integration
Seth Hall
seth at icir.org
Tue Jul 29 10:14:17 PDT 2014
On Jul 29, 2014, at 12:50 PM, James Lay <jlay at slave-tothe-box.net> wrote:
> Will I need to add an additional item? Or will bro pipe the barnyard2
> data automatically to elasticsearch? Thanks again.
If you don't specify to send the barnyard log to ES, then it won't go (unless you don't specify which logs to send and all logs are sent). The Log::ID for the barnyard2 log is: Barnyard2::LOG
.Seth
--
Seth Hall
International Computer Science Institute
(Bro) because everyone has a network
http://www.bro.org/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 495 bytes
Desc: Message signed with OpenPGP using GPGMail
Url : http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20140729/c36f44bf/attachment.bin
More information about the Bro
mailing list