Hi there,
So I got ntopng writing to elasticsearch. Very cool indeed.
A couple of things I've noticed as feedback on it so far:
- IPv6 flows are being logged with the IPV4_(SRC|DST)_ADDR column
name :)
- L7_PROTO is logged as an integer / protocol_id. It would be
useful log the L7_PROTO_NAME as well/instead.
I know this is very new stuff, so this is not a complaint :) Just
excited to see it working and wanting to do more with it.
Thanks,
Chris
_______________________________________________
Ntop mailing list
[email protected]
http://listgateway.unipi.it/mailman/listinfo/ntop
