[Bro] bro elasticsearch plugin + kibana indexing
Alex Kefallonitis
al.kefallonitis at gmail.com
Sun Mar 5 02:14:46 PST 2017
I try the patch too but still no timestamp appears i am using ELK 5.2.2
2017-03-05 10:27 GMT+02:00 Daniel Guerra <daniel.guerra69 at gmail.com>:
> Try this
>
> https://github.com/danielguerra69/bro-debian-
> elasticsearch/blob/master/bro-patch/ElasticSearch.cc.patch
>
>
> > On 05 Mar 2017, at 02:57, Alex Kefallonitis <al.kefallonitis at gmail.com>
> wrote:
> >
> > ELK + Kibana not indexing bro logs
> >
> > Succesfully installed the plugin and ELK but when i add indexing bro-* ,
> index time-field appears empty (@timestamp) so i cannot use bro logs with
> kibana search. Anyone have same issue?
> > _______________________________________________
> > Bro mailing list
> > bro at bro-ids.org
> > http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/bro
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20170305/4d291c6a/attachment.html
More information about the Bro
mailing list