Dan,
Thanks for the followup. I made the changes you suggested and it's
detecting the rules as expected. Now, last step is to actually get it to
issue the active-response with a firewall drop. Thank you!
-JA-
On Wednesday, May 3, 2017 at 4:40:18 PM UTC-5, dan (ddpbsd) wrote:
>
> On Wed
I think compression of elasticsearch indices is enabled by default within
ES, but to save further disk space, I've used a file system that supports
transparent compression, like btrfs or zfs.
zfs has higher memory requirements than btrfs, and both will slow down your
disk performance performan
