[GitHub] metron pull request #586: METRON-508 Expand Elasticsearch templates to suppo...

2017-06-19 Thread JonZeolla
GitHub user JonZeolla reopened a pull request: https://github.com/apache/metron/pull/586 METRON-508 Expand Elasticsearch templates to support the standard bro logs ## Contributor Comments This PR makes it easier for someone with an existing bro install to send some of their log

[GitHub] metron pull request #586: METRON-508 Expand Elasticsearch templates to suppo...

2017-06-19 Thread JonZeolla
Github user JonZeolla closed the pull request at: https://github.com/apache/metron/pull/586 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is

[GitHub] metron pull request #607: METRON-982 add new rest api for storm supervisor s...

2017-06-19 Thread ottobackwards
Github user ottobackwards commented on a diff in the pull request: https://github.com/apache/metron/pull/607#discussion_r122703811 --- Diff: metron-interface/metron-rest/src/main/java/org/apache/metron/rest/service/impl/StormStatusServiceImpl.java --- @@ -49,6 +44,11 @@ public

[GitHub] metron pull request #615: METRON-995: Temporary variables in stellar enrichm...

2017-06-19 Thread asfgit
Github user asfgit closed the pull request at: https://github.com/apache/metron/pull/615 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is

[GitHub] metron issue #577: METRON-746: Build Custom Checkstyle and IDE formatting se...

2017-06-19 Thread justinleet
Github user justinleet commented on the issue: https://github.com/apache/metron/pull/577 Yeah, we can. I just didn't bother for first pass. It's just a matter of grabbing the file, dropping it in, and referencing it. It's like two lines in the files. I'll go ahead and

[GitHub] metron issue #577: METRON-746: Build Custom Checkstyle and IDE formatting se...

2017-06-19 Thread ottobackwards
Github user ottobackwards commented on the issue: https://github.com/apache/metron/pull/577 Justin, should we have a local copy of the check style xml in the git repo itself? Then we could make changes... and they will be automatically setup? --- If your project is set up for it,

[GitHub] metron pull request #607: METRON-982 add new rest api for storm supervisor s...

2017-06-19 Thread justinleet
Github user justinleet commented on a diff in the pull request: https://github.com/apache/metron/pull/607#discussion_r122700117 --- Diff: metron-interface/metron-rest/src/main/java/org/apache/metron/rest/service/impl/StormStatusServiceImpl.java --- @@ -49,6 +44,11 @@ public

[GitHub] metron issue #615: METRON-995: Temporary variables in stellar enrichments wh...

2017-06-19 Thread justinleet
Github user justinleet commented on the issue: https://github.com/apache/metron/pull/615 +1 by inspection, thanks a lot! --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled

[GitHub] metron pull request #618: METRON-999 Add virtualization support checks to pl...

2017-06-19 Thread JonZeolla
GitHub user JonZeolla reopened a pull request: https://github.com/apache/metron/pull/618 METRON-999 Add virtualization support checks to platform-info.sh ## Contributor Comments I added a basic virtualization check to `platform-info.sh` for linux and macOS systems. Tested on

Re: [Discussion] About the wiki….

2017-06-19 Thread Simon Elliston Ball
Agreed. Some of the project management stuff and bylaws fit there, but let's get the misleading docs off and push the architecture and deployment stuff into the source base via site-book. That way we might just keep it consistent with versions. Simon > On 19 Jun 2017, at 07:11, Casey Stella

[GitHub] metron issue #577: METRON-746: Build Custom Checkstyle and IDE formatting se...

2017-06-19 Thread ottobackwards
Github user ottobackwards commented on the issue: https://github.com/apache/metron/pull/577 +1. This is a big step forward in getting all of this cleaned up. I would like to see it land early in the post 0.4.0 timeline so we can work through any issues. --- If your project is set

Re: [INCOMING] Metron 0.4.0 release (RC3)

2017-06-19 Thread Casey Stella
Ok METRON-995 is in, so we should be able to release any time from my perspective. I think we're just waiting on some resolution for 941 at this point (that thread seems dead). On Fri, Jun 9, 2017 at 6:38 PM, Casey Stella wrote: > I'm willing to be shot down about this, but

[GitHub] metron issue #586: METRON-508 Expand Elasticsearch templates to support the ...

2017-06-19 Thread justinleet
Github user justinleet commented on the issue: https://github.com/apache/metron/pull/586 +1 still stands, pending Travis. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled

[GitHub] metron pull request #586: METRON-508 Expand Elasticsearch templates to suppo...

2017-06-19 Thread justinleet
Github user justinleet commented on a diff in the pull request: https://github.com/apache/metron/pull/586#discussion_r122717740 --- Diff: metron-platform/metron-parsers/src/test/java/org/apache/metron/parsers/bro/BasicBroParserTest.java --- @@ -241,8 +380,754 @@ public void

[GitHub] metron issue #586: METRON-508 Expand Elasticsearch templates to support the ...

2017-06-19 Thread justinleet
Github user justinleet commented on the issue: https://github.com/apache/metron/pull/586 @JonZeolla Can you deconflict this? --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature

[GitHub] metron pull request #617: METRON-996 Performance improvement for ASA parser

2017-06-19 Thread asfgit
Github user asfgit closed the pull request at: https://github.com/apache/metron/pull/617 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is

[GitHub] metron issue #617: METRON-996 Performance improvement for ASA parser

2017-06-19 Thread cestella
Github user cestella commented on the issue: https://github.com/apache/metron/pull/617 +1 by inspection, great job @simonellistonball --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this

[GitHub] metron issue #617: METRON-996 Performance improvement for ASA parser

2017-06-19 Thread justinleet
Github user justinleet commented on the issue: https://github.com/apache/metron/pull/617 +1 by inspection, thanks a lot for the great work --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have

Profiler Deck

2017-06-19 Thread Nick Allen
I created a deck that walks through the current state of the Profiler. I thought this might be helpful to others on the list. Feel free to share any feedback or questions. https://www.slideshare.net/NickAllen4/apache-metron-profiler FYI - Viewing on Slideshare, corrupts a few images. If you

[GitHub] metron pull request #586: METRON-508 Expand Elasticsearch templates to suppo...

2017-06-19 Thread JonZeolla
Github user JonZeolla closed the pull request at: https://github.com/apache/metron/pull/586 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature is

[GitHub] metron issue #619: METRON-939 Elasticsearch ES5 with Xshield client support

2017-06-19 Thread wardbekker
Github user wardbekker commented on the issue: https://github.com/apache/metron/pull/619 Thanks for the review @cestella I've pushed a commit fixing the reported issues. --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well.

[GitHub] metron pull request #586: METRON-508 Expand Elasticsearch templates to suppo...

2017-06-19 Thread JonZeolla
GitHub user JonZeolla reopened a pull request: https://github.com/apache/metron/pull/586 METRON-508 Expand Elasticsearch templates to support the standard bro logs ## Contributor Comments This PR makes it easier for someone with an existing bro install to send some of their log

[GitHub] metron pull request #620: Metron-988: UI for viewing alerts generated by Met...

2017-06-19 Thread iraghumitra
GitHub user iraghumitra reopened a pull request: https://github.com/apache/metron/pull/620 Metron-988: UI for viewing alerts generated by Metron ## Contributor Comments The PR intends to implement a GUI for managing alerts. - This was discussed in the community a while

[GitHub] metron pull request #620: Metron-988: UI for viewing alerts generated by Met...

2017-06-19 Thread iraghumitra
Github user iraghumitra closed the pull request at: https://github.com/apache/metron/pull/620 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature

[GitHub] metron issue #620: Metron-988: UI for viewing alerts generated by Metron

2017-06-19 Thread iraghumitra
Github user iraghumitra commented on the issue: https://github.com/apache/metron/pull/620 @cestella thanks for pointing me to PR #468 this is great. I will update the PR with all the steps ASAIC. Meanwhile, if you want to give it a spin the Readme has all the required info.

[GitHub] metron pull request #620: Metron-988: UI for viewing alerts generated by Met...

2017-06-19 Thread iraghumitra
Github user iraghumitra commented on a diff in the pull request: https://github.com/apache/metron/pull/620#discussion_r122812206 --- Diff: metron-interface/metron-alerts/src/app/service/cluster-metadata.service.ts --- @@ -0,0 +1,59 @@ +/** + * Licensed to the Apache

[GitHub] metron issue #608: METRON-986 Enhance Fastcapa to Support Intel X520

2017-06-19 Thread cestella
Github user cestella commented on the issue: https://github.com/apache/metron/pull/608 This is great work, @nickwallen Nice refactoring and good functionality changes. Just curious for the uninitiated, if I'm running a non-X520 but another DPDK supported card, is that

[GitHub] metron pull request #620: Metron-988: UI for viewing alerts generated by Met...

2017-06-19 Thread cestella
Github user cestella commented on a diff in the pull request: https://github.com/apache/metron/pull/620#discussion_r122813875 --- Diff: metron-interface/metron-alerts/src/app/service/save-search.service.ts --- @@ -0,0 +1,191 @@ +/** + * Licensed to the Apache Software

[GitHub] metron issue #620: Metron-988: UI for viewing alerts generated by Metron

2017-06-19 Thread cestella
Github user cestella commented on the issue: https://github.com/apache/metron/pull/620 I think it's ok to not integrate with REST for the first cut, but I'd like to see the UI layer architected in such a way that when we do integrate with the REST layer, it'll not span more than

[GitHub] metron issue #620: Metron-988: UI for viewing alerts generated by Metron

2017-06-19 Thread iraghumitra
Github user iraghumitra commented on the issue: https://github.com/apache/metron/pull/620 @cestella Thanks for the quick review - The UI is standalone it connects to Elastic and fetches alerts for viewing. Alerts can be generated using quick-dev or full-dev or any other means

[GitHub] metron pull request #620: Metron-988: UI for viewing alerts generated by Met...

2017-06-19 Thread iraghumitra
Github user iraghumitra commented on a diff in the pull request: https://github.com/apache/metron/pull/620#discussion_r122804052 --- Diff: metron-interface/metron-alerts/src/app/service/alert.service.ts --- @@ -0,0 +1,81 @@ +/** + * Licensed to the Apache Software

[GitHub] metron pull request #620: Metron-988: UI for viewing alerts generated by Met...

2017-06-19 Thread iraghumitra
Github user iraghumitra commented on a diff in the pull request: https://github.com/apache/metron/pull/620#discussion_r122807048 --- Diff: metron-interface/metron-alerts/src/app/service/save-search.service.ts --- @@ -0,0 +1,191 @@ +/** + * Licensed to the Apache Software

[GitHub] metron pull request #620: Metron-988

2017-06-19 Thread iraghumitra
GitHub user iraghumitra opened a pull request: https://github.com/apache/metron/pull/620 Metron-988 ## Contributor Comments - The PR intends to implement a GUI for managing alerts. - This was discussed in the community a while back the jira holds the details.

[GitHub] metron pull request #620: Metron-988: UI for viewing alerts generated by Met...

2017-06-19 Thread iraghumitra
Github user iraghumitra closed the pull request at: https://github.com/apache/metron/pull/620 --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this feature enabled and wishes so, or if the feature

[GitHub] metron pull request #620: Metron-988: UI for viewing alerts generated by Met...

2017-06-19 Thread cestella
Github user cestella commented on a diff in the pull request: https://github.com/apache/metron/pull/620#discussion_r122792729 --- Diff: metron-interface/metron-alerts/src/app/service/alert.service.ts --- @@ -0,0 +1,81 @@ +/** + * Licensed to the Apache Software Foundation

[GitHub] metron pull request #620: Metron-988: UI for viewing alerts generated by Met...

2017-06-19 Thread cestella
Github user cestella commented on a diff in the pull request: https://github.com/apache/metron/pull/620#discussion_r122794993 --- Diff: metron-interface/metron-alerts/src/app/service/save-search.service.ts --- @@ -0,0 +1,191 @@ +/** + * Licensed to the Apache Software

[GitHub] metron pull request #620: Metron-988: UI for viewing alerts generated by Met...

2017-06-19 Thread cestella
Github user cestella commented on a diff in the pull request: https://github.com/apache/metron/pull/620#discussion_r122793946 --- Diff: metron-interface/metron-alerts/src/app/service/cluster-metadata.service.ts --- @@ -0,0 +1,59 @@ +/** + * Licensed to the Apache Software

[GitHub] metron pull request #620: Metron-988: UI for viewing alerts generated by Met...

2017-06-19 Thread cestella
Github user cestella commented on a diff in the pull request: https://github.com/apache/metron/pull/620#discussion_r122792486 --- Diff: metron-interface/metron-alerts/src/app/service/alert.service.ts --- @@ -0,0 +1,81 @@ +/** + * Licensed to the Apache Software Foundation

[GitHub] metron issue #620: Metron-988: UI for viewing alerts generated by Metron

2017-06-19 Thread ottobackwards
Github user ottobackwards commented on the issue: https://github.com/apache/metron/pull/620 I think and hope what @cestella is saying is that we would hope that the metron ui's are not tied to an optional back end, but rather to the rest-api. Thus Metron alerts will work with

[GitHub] metron issue #620: Metron-988: UI for viewing alerts generated by Metron

2017-06-19 Thread cestella
Github user cestella commented on the issue: https://github.com/apache/metron/pull/620 @ottobackwards yes, that's exactly what I mean. I want to make sure this work is teed up to easily use the rest-api. --- If your project is set up for it, you can reply to this email and have

[GitHub] metron pull request #620: Metron-988: UI for viewing alerts generated by Met...

2017-06-19 Thread cestella
Github user cestella commented on a diff in the pull request: https://github.com/apache/metron/pull/620#discussion_r122807607 --- Diff: metron-interface/metron-alerts/src/app/service/cluster-metadata.service.ts --- @@ -0,0 +1,59 @@ +/** + * Licensed to the Apache Software

[GitHub] metron issue #620: Metron-988: UI for viewing alerts generated by Metron

2017-06-19 Thread cestella
Github user cestella commented on the issue: https://github.com/apache/metron/pull/620 So, given that we're planning on moving to the REST API to enable index-specific capabilities, can you detail exactly which API calls that this PR will require? We can then create JIRAs. --- If

[GitHub] metron issue #608: METRON-986 Enhance Fastcapa to Support Intel X520

2017-06-19 Thread nickwallen
Github user nickwallen commented on the issue: https://github.com/apache/metron/pull/608 What we have **should** work out-of-the-box for most NICs. Of course, I have only been able to test on the x520 and Cisco VNICs, so that is all I can really be sure of. If changes would

[GitHub] metron issue #620: Metron-988: UI for viewing alerts generated by Metron

2017-06-19 Thread merrimanr
Github user merrimanr commented on the issue: https://github.com/apache/metron/pull/620 I was able to get this running in "dev" mode against full dev based on instructions in the README. This is a great start. I've noticed several bugs while initially exploring the UI:

[GitHub] metron pull request #619: METRON-939 Elasticsearch ES5 with Xshield client s...

2017-06-19 Thread wardbekker
GitHub user wardbekker opened a pull request: https://github.com/apache/metron/pull/619 METRON-939 Elasticsearch ES5 with Xshield client support ## Contributor Comments This is a work-in-progress fix for Elasticsearch ES5 with Xshield client support. I'm opening a pull request

[GitHub] metron issue #618: METRON-999 Add virtualization support checks to platform-...

2017-06-19 Thread ottobackwards
Github user ottobackwards commented on the issue: https://github.com/apache/metron/pull/618 +1, ran on centos 6.7 and mac os x sierra --- If your project is set up for it, you can reply to this email and have your reply appear on GitHub as well. If your project does not have this