Metron does not install or deploy Nifi. You should do that as a separate
instance.
a nifi flow would output to a parser’s kafka topic.
On April 25, 2017 at 16:56:27, Mark de Rijk (
mark.der...@samarkconsulting.co.uk) wrote:
Hi,
I am going through the documentation but I feel that I need to
Hi Mark,
I'll comment on the sensors - we have a lightweight set of sensors (stubs)
that we're using for dev purposes. Basically, they emit random demo data at
intervals. The reason this was done was to keep the dev images lighter
weight. Check this doc out -
Hi,
I am going through the documentation but I feel that I need to pick up
knowledge on some of the components used.
The sensors do not seem to be started as well.
When I vagrant up the full-dev environment the below seems to indicate to me
the sensors are skipped:
Running with
Hello,
In the info discovery phase, and I'm just curious if anyone has tried/had any
problems with leveraging existing snort parsers for suricata logs.
Cheers,
Ian 'z0r0' Abreu
Hi,
To vouch for Otto.
1. Yes do check if docker is installed and running before even attempting
to install.
2. Script from Otto will clean up after this Pebkac action by me.
Now I have to figure out the sensors so I can setup and monitor the Bro, YAF
and Snort sensors.
Once I
Hi,
I can connect to Metron/Kibana and Ambari. Connecting to Sensor status is
unsuccessful though.
The port is listening as I did check that.
Metron @ http://node1:5000;,
" Ambari @ http://node1:8080;,
" Sensor Status @ http://node1:2812;
I have tried
