sof-elk icon indicating copy to clipboard operation
sof-elk copied to clipboard

Published 20 hours ago verified publisher icon philhagen

overhaul sof-elk_clear.py to better handle sourcedirs

Open philhagen opened this issue 7 years ago • 0 comments

for example, bro logs don't all go into the 'logstash' index... conn* goes into netflow, http* into httpdlog, etc. the script needs to accommodate these scenarios, then use 'logstash' as a fallback for any other files.

philhagen avatar Sep 20 '17 02:09 philhagen