Hi Luca,
This file is in the var/log/nprobe folder, it contains many lines like this:
{"index": {"_type": "nProbe", "_index": "nprobe"}}
{"IPV4_SRC_ADDR":"10.0.5.125","IPV4_DST_ADDR":"10.0.4.24","IPV4_NEXT_HOP":"0.0.0.0","INPUT_SNMP":65535,"OUTPUT_SNMP":65535,"IN_PKTS":66,"IN_BYTES":18430,"FIRST_SWITCHED":1448283463,"LAST_SWITCHED":1448283522,"L4_SRC_PORT":2555,"L4_DST_PORT":60299,"TCP_FLAGS":24,"PROTOCOL":6,"SRC_TOS":0,"SRC_AS":0,"DST_AS":0,"IPV4_SRC_MASK":0,"IPV4_DST_MASK":0,"@version":"1","@timestamp":"2015-11-23T12:58:44Z",
"EXPORTER_IPV4_ADDRESS":"10.0.1.64"}
Regards,
Ohad
*From:* [email protected] [mailto:
[email protected]] *On Behalf Of *Luca Deri
*Sent:* Monday, November 23, 2015 2:59 PM
*To:* [email protected]
*Subject:* Re: [Ntop-misc] nProbe big log file with elastic search
Hi Ohad,
is this file on the ElasticSearch side right?
Regards Luca
On 18 Nov 2015, at 15:34, Ohad Kleinman <[email protected]> wrote:
Hi,
We are using nProbe with the option of writing all flows into elastic
search, the [email protected] file is becoming large as each flow that is
written into the elastic search is also being written into the log file.
Is there any parameter that can disable this?
Thanks.
Ohad
_______________________________________________
Ntop-misc mailing list
[email protected]
http://listgateway.unipi.it/mailman/listinfo/ntop-misc
_______________________________________________
Ntop-misc mailing list
[email protected]
http://listgateway.unipi.it/mailman/listinfo/ntop-misc
