Hi, I am trying to index the Syslog using CEF Parser with Nifi.
It does not give any error though, transport data to kafa without indexing it. It keepg giving FAILED in Spout. I believe indexing Syslog are most basic usecase for all. But metron fails to do it with each in standard format. I tried bro for it. But even it keeps giving PARSER Error. Any help ? Fast will be apperciated. -- With Regards Farrukh Naveed Anjum
