D4
/
analyzer-d4-log
mirror of https://github.com/D4-project/analyzer-d4-log
2
0
Fork 0
Code Issues Releases Wiki Activity

chg: [doc] typos

master v0.2
Jean-Louis Huynen 2020-06-26 15:53:15 +02:00 committed by GitHub
parent 0d21913cd1
commit 4bc6a0b635
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
README.md
View File

@ -6,9 +6,9 @@ analyzer-d4-log relies on redis to consume grokked loglines.
To grok the loglines, analyzer-d4-log relies on an external tool: both logstash https://www.elastic.co/logstash
and nifi https://nifi.apache.org/ have been tested for this purpose (using this nifi template https://github.com/D4-project/d4-nifi-templates).
These tools poll directly the d4 server'redis server for loglines and push the results into a specific redis queue that the analyzer consumes.
These tools poll directly d4 server's redis for loglines and push the results into a specific redis queue that the analyzer consumes.
![](assets/nifi.png)
![Grokking D4 loglines in nifi](assets/nifi.png)
analyzer-d4-log polls this queue periodically to produce counts and statistics of the data. At the moment, only sshd logs are supported but more will come in the future.