On the 25th I said:
It should be in /usr/hdp/current/kafka-broker/bin/ or similar (from
memory) on node1, assuming you are running full dev.
Jon
Jon
On Fri, Oct 27, 2017 at 6:25 AM Syed Hammad Tahir <[email protected]>
wrote:
> snort logs are in tcp dump format. I may have to convert them.
>
> bin/kafka-console-producer.sh --broker-list localhost:9092 --topic test
>
> How to give file name or path in this command?
>
> On Fri, Oct 27, 2017 at 2:53 PM, [email protected] <[email protected]>
> wrote:
>
>> If you have text snort logs you can use Apache nifi or the Kafka producer
>> script as described in step 4 here[1] to push them to Metron's snort
>> topic. You may also want to look at this [2].
>>
>> 1: https://kafka.apache.org/quickstart
>> 2:
>> https://stackoverflow.com/questions/38701179/kafka-console-producer-and-bash-script
>>
>> Jon
>>
>> On Fri, Oct 27, 2017, 02:15 Syed Hammad Tahir <[email protected]>
>> wrote:
>>
>>> Hello everyone,
>>>
>>> I have run snort independently on vagrant ssh and dumped the logs in
>>> tcpdump format. Now I want to bring them to metron to play with them a bit.
>>> Some of you already replied me with some solutions but thats lost in the
>>> inbox somewhere and engulfed by the elasticsearhc issue that I had. Please
>>> give me an easy to understand this solution for this problem.
>>>
>>> Regards.
>>>
>> --
>>
>> Jon
>>
>
> --
Jon
