Hi,
I have secret plan to integrate suricata ips at the proxmox host level.
(I have critical vms, and customers require an ips sometime)
ips can use a lot of cpu, and be able to enable it on specific vms, could be
worderfull.
They are a lot of information here
https://home.regit.org/2011/01/bu
AFAIK, ulogd
https://home.regit.org/2014/03/suricata-ulogd-splunk-logstash/
can now output in json format, and then logstash or splunk can read them easily.
code is here :
http://git.netfilter.org/ulogd2/tree/output/ulogd_output_JSON.c?id=2b39df550fbad944b4aab77617d4272c5d62ba70
It could be w
On Thu, 13 Mar 2014 11:45:52 -0700
Chris Allen wrote:
> Yes. Thanks for including the patches. I was unaware of ZFSEdit.js as I
> wasn't testing this on new version of pve-manager (I was using 3.1 release).
>
It was also part of latest 3.1. Double-click the mouse over your
storage specificatio
Yes. Thanks for including the patches. I was unaware of ZFSEdit.js as I
wasn't testing this on new version of pve-manager (I was using 3.1 release).
On Thu, Mar 13, 2014 at 11:09 AM, Michael Rasmussen wrote:
>
> On Wed, 12 Mar 2014 10:14:02 -0700
> Chris Allen wrote:
>
> > My submission was
So you think we can use whatever format we like?
And use nxlog to feed logstash?
I do not know much about nxlog but I believe it can feed log data as
JSON into logstash
http://logstash.net/docs/1.3.3/codecs/json
logstash has a large number of inputs and some inputs can also use codecs.
htt
On Wed, 12 Mar 2014 10:14:02 -0700
Chris Allen wrote:
> My submission was rejected previously because I was not a member of
> pve-devel mailing list. I added myself to this list and I'm now
> re-submitting my patches.
>
I have just briefly looked over the patch and can see that some
patching
> > logstash can read just about anything, it can also listen on UDP or
> > TCP and accept data in a format you specify.
> >
>
> So you think we can use whatever format we like?
And use nxlog to feed logstash?
___
pve-devel mailing list
pve-devel@pve.p
> logstash can read just about anything, it can also listen on UDP or TCP and
> accept data in a format you specify.
>
So you think we can use whatever format we like?
___
pve-devel mailing list
pve-devel@pve.proxmox.com
http://pve.proxmox.com/cgi-bin/
I'm thinking about log centralisation in kibana webinterface, like this:
https://home.regit.org/2014/03/suricata-ulogd-splunk-logstash/
Well, looks like we just need to write a format those tools can read?
logstash can read just about anything, it can also listen on UDP or TCP
and accept da
> By the way, do you think it's possible to add ulogd if advanced user want it ?
>
> I'm thinking about log centralisation in kibana webinterface, like this:
>
> https://home.regit.org/2014/03/suricata-ulogd-splunk-logstash/
Well, looks like we just need to write a format those tools can read?
_
By the way, do you think it's possible to add ulogd if advanced user want it ?
I'm thinking about log centralisation in kibana webinterface, like this:
https://home.regit.org/2014/03/suricata-ulogd-splunk-logstash/
- Mail original -
De: "Dietmar Maurer"
À: "Alexandre DERUMIER (aderum..
>>any objections?
No, good job !
- Mail original -
De: "Dietmar Maurer"
À: "Alexandre DERUMIER (aderum...@odiso.com)" ,
pve-devel@pve.proxmox.com
Envoyé: Jeudi 13 Mars 2014 13:48:12
Objet: pve-firewall: using NFLOG
Hi Alexandre,
I just switched from LOG to NFLOG, and implemented a si
Hi Alexandre,
I just switched from LOG to NFLOG, and implemented a simple log daemon called
"pvefw-logger".
It is just 677 lines of code, so I think this is simpler and more flexible for
us than using ulogd.
https://git.proxmox.com/?p=pve-firewall.git;a=commitdiff;h=ba0b3a0a1eae4d40ea2cdeeea33
Thanks, I don't have time myself to test them.
(I review them fastly, seem to be good)
- Mail original -
De: "Michael Rasmussen"
À: "Dietmar Maurer"
Cc: pve-devel@pve.proxmox.com
Envoyé: Jeudi 13 Mars 2014 08:09:52
Objet: Re: [pve-devel] ZFS Storage Patches
Hi Dietmar,
On Thu, 13 Mar
Hi Dietmar,
On Thu, 13 Mar 2014 07:00:10 +
Dietmar Maurer wrote:
>
> would you mind to review and test those patches? You are the author of the
> ZFS plugin,
> so I guess it is best if you do the review.
>
I will do the testing tomorrow or Saturday.
--
Hilsen/Regards
Michael Rasmussen
Hi Michael,
would you mind to review and test those patches? You are the author of the ZFS
plugin,
so I guess it is best if you do the review.
From: pve-devel [mailto:pve-devel-boun...@pve.proxmox.com] On Behalf Of Chris
Allen
Sent: Mittwoch, 12. März 2014 18:14
To: pve-devel@pve.proxmox.com
S
16 matches
Mail list logo
