[Bro] - recommended DB for Bro logs

william de ping bill.de.ping at gmail.com
Sun Dec 9 07:12:42 PST 2018


Hi all,

I would appreciate recommendations for a DB server that is most suited for
ingesting and digesting Bro logs.

I know of some use cases involving splunk and the Splunk Bro app, but price
and performance wise (10GBps incoming traffic) it does not seem to be the
best solution out there.

Does anyone have any experience with Bro and  ElasticSearch | Redis | MySQL
?

I am looking into different solutions and would appreciate your thoughts.

Thanks in advance
B
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20181209/4348ed4f/attachment.html 


More information about the Bro mailing list