[Bro] Bro and Splunk forwarder
Joseph Ghobrial
jghobrial at rice.edu
Tue May 1 11:47:59 PDT 2018
We've got a bro cluster up and running on our SciDMZ. I'm running the
splunk forwarder on the head node. We've seen the splunk forwarder having
issues after some time sending data. I'm not seeing anything in the system
logs or splunk logs showing a reason.
Anyone running this type of configuration and seen contention?
Thanks,
Joseph
--
Joseph Ghobrial
Systems Analyst II
Office of Information Technology
Rice University
jghobrial @ rice.edu
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20180501/a13a966d/attachment.html
More information about the Bro
mailing list