Project

General

Profile

Actions
Copy link

Feature #10421

closed

suricata unix_stream support for telegraf

Added by Manuel Piovan about 4 years ago. Updated almost 4 years ago.

Status:
Resolved
Priority:
Very Low
Assignee:
-
Category:
Suricata
Target version:
-
Start date:
04/03/2020
Due date:
% Done:

0%

Estimated time:
Plus Target Version:

Description

it would be nice if there was support for telegraf under suricata
input.suricata need unix socket to be created for listening

suricata need
- eve-log:
enabled: yes
filetype: unix_stream
filename: suricata-stats.sock
types:
- stats:
threads: yes

i've made a test and it work if i manually edit the suricata.yaml
more info https://github.com/influxdata/telegraf/tree/master/plugins/inputs/suricata

Files

Immagine.jpg (80.8 KB) Immagine.jpg grafana+suricata example Manuel Piovan, 04/03/2020 10:29 AM
Actions
Copy link

Also available in: Atom PDF