[Bro] Send BRO logs over TCP/UDP
archeldeeb at gmail.com
Sun Jul 16 00:15:13 PDT 2017
I am aware that there are many ways to send bro logs to syslog/SIEM/etc.,
but as far as I understand they're all relying on reading/tailing the log
files created by bro then send them over to their destination (e.g.
logstash & NiFi).
Is it possible to send logs over TCP/UDP without having them written to
disk to be read by a third party app?
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Bro