[Bro] JSON logging of datasource or 'path' value

Chris Bennett chris at ceegeebee.com
Sun Jun 4 03:08:55 PDT 2017


Hi there,

I'm experimenting with the JSON output and wanting to manually feed logs to
logstash via 'cat | nc'.  Is it possible to have the JSON output write the
datatype or 'path' value similar to what is wrtiten as a metadata field at
the top of ascii logs, but include it in each record for easy parsing in
Logstash?

Thanks,

Chris
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20170604/965fcc2d/attachment.html 


More information about the Bro mailing list