Feature #2084
closed编写UDP eve output plugin.
Description
我编写了一个UDP eve output plugin,有同好需要的么?版本是3.2的,可以兼容老的版本,不过需要在配置文件中指定发送的目的服务器和端口。这样就可以把日志直接用ELK接收了。
Updated by Victor Julien over 7 years ago
Can you please write in English. No one on our team speaks Chinese (at least that is what Google translate thinks it is :) )
Updated by Lei Bao over 7 years ago
OK,Thanks,Victor Julien.
I'd wrote a output plugin. Support eve UDP output. Config with eve space.
Can use to json output to Logstash.
How can I put the code to ?
Updated by Victor Julien over 7 years ago
Thanks!
Please have a look at:
https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Contributing
https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Code_Submission_Quality_Criteria
and more generally: https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Suricata_Developers_Guide
Updated by Lei Bao over 7 years ago
Updated by qidu sy over 7 years ago
Lei Bao wrote:
Look this:
https://github.com/inliniac/suricata/pull/2637/commits/29639ae56dae7507c7b32a2fdaa7f33748c421bd
Lei Bao ,你好!我也在使用suricata,但是目前刚起步一段时间,主要通过看文档了解基本使用以及功能,目前正在阅读源码。看您已经对suricata非常熟悉,是否能一起交流suricata以及在参与开源方面的经验。是否能留个联系方式,一起交流,email : sy_qidu@163.com 。非常感谢!
Updated by Victor Julien over 6 years ago
- Status changed from New to Closed
- Assignee deleted (
Lei Bao) - Target version deleted (
TBD)