Hello Jesús,
Welcome to Metron!
Besides the documentation, the best way to explore and getting familiar with
Metron is to try the single node deployment:
https://github.com/apache/metron/tree/master/metron-deployment/development/centos6
I would be a bit mindful of the pre-requisites before
Hi Girish,
Can you refer to this article for setting up MaaS on Metron full-dev and give
it a try?
https://community.hortonworks.com/articles/149376/metron-model-as-a-service-maas-full-dev-platform.html
Cheers,
Anand
From: Girish N
Hello Syed,
You can modify the metron-deployment/vagrant/full-dev-platform/Vagrantfile to
increase memory.
hosts = [{
hostname: "node1",
ip: "192.168.66.121",
memory: "8192",
cpus: 4,
promisc: 2 # enables promisc on the 'Nth' network interface
}]
Regards,
Anand
From: Syed
day, August 8, 2017 at 7:12 PM
To: "user@metron.apache.org<mailto:user@metron.apache.org>"
<user@metron.apache.org<mailto:user@metron.apache.org>>
Subject: Re: Threat triage rules using stellar geo enrichment
I think you want:
GEO_GET( ip_dst_addr, ['country']) !=
Christian,
Can you try the steps in this article?
https://community.hortonworks.com/articles/59698/pushing-stixtaxii-feeds-from-opentaxii-server-into.html
Both extractor and enrichment configs are requisites.
Regards,
Anand
From: Metron >
Reply-To: