Hi James,
Thanks for your reply,
This is the output of the API's :
For GET /_cluster/allocation/ API, there is an error like below :
For your information, I'm using Elasticsearch 2.3.3
On 10/10/17 23:49, James Sirota wrote:
I suspect your Elasticsearch may be in a bad state. If you are u
Yes, you can use Snort. Metron can consume Snort telemetries out of the box. You have to setup Snort on your own and push the output into a kafka topic (most likely using NiFi). From there on you can use the output of Snort in Metron.10.10.2017, 00:48, "Syed Hammad Tahir" :Hi,Can I use snort in pac
I suspect your Elasticsearch may be in a bad state. If you are using Chrome, can you download the sense plugin and then run the following commands: GET /_cluster/health?pretty GET _cat/pending_tasks?v GET /_cat/nodes?v GET /_cluster/allocation/ And paste the output here? Thanks,James09.10.2017, 22:
Hi,
Can I use snort in packet capture mode with metron? By default it works in
IDS mode only.
Regards.
