# Notes: values will be base64 encoded, so actual size in json document # Use maxbytespervalue to limit the number of bytes to be copied per value element. # maxvalue: 0 # store no values at all (default) # maxvalue: -1 # store all values (text based protocol multi-get) # Update the maxvalue option to store the values - base64 encoded - in the # Note: All unknown commands MUST not contain any data parts! # Uncomment the parseunknown option to force the memcache text protocol parse # the memcache protocol by commenting out the list of ports. # Configure the ports where to listen for memcache traffic. # Only query parameters and top level form parameters are replaced. # This is generally useful for avoiding storing user passwords or other # The value of the parameters will be replaced with the 'xxxxx' string. The names of the parameters are case insensitive. # Uncomment the following to hide certain parameters in URL or forms attached # the http protocol by commenting the list of ports. # Configure the ports where to listen for HTTP traffic. # fields, but this can be useful if you need visibility specifically # Nearly all data about the request/response is available in the dns.* # request and response message are added to the result. # send_request and send_response control whether or not the stringified DNS # (additional resource records) is added to messages. # include_additionals controls whether or not the dns.additionals field # (authority resource records) is added to messages. # include_authorities controls whether or not the dns.authorities field # the DNS protocol by commenting out the list of ports. # Configure the ports where to listen for DNS traffic. # keyword to sniff on all connected interfaces. # Select the network interfaces to sniff the data. # to remove duplicates if shippers are installed on multiple servers. # by the server on which the shipper is installed. # Uncomment the following if you want to ignore transactions created Tags make it easy to group transactions by different # The tags of the shipper are included in their own field with each # If this options is not defined, the hostname is used. # all the transactions sent by a single shipper in the web interface. # The name of the shipper that publishes the network data. The config file is same as the original config file except ports and interface: # Shipper # Logp.go:110: INFO Startup successful, disable stdout logging Sniffer.go:151: DBG Sniffer type: pcap device: en0 Sniffer.go:306: DBG BPF filter: tcp port 8091 or tcp port 8093 or tcp port 3306 or tcp port 6379 or tcp port 5432 or tcp port 9090 or tcp port 27017 or udp port 53 or port 11211 Packetbeat.go:204: DBG Initializing sniffer Memcache.go:104: DBG init memcache plugin Mongodb.go:90: DBG Init a MongoDB protocol parser Packetbeat.go:171: DBG Initializing protocol plugins Output.go:230: DBG Topology map mapĪsync.go:95: DBG create bulk processing worker (interval=1s, bulk size=10000) Output.go:175: DBG Publish IPs with expiration time 15000Īpi.go:225: DBG Use connection api.go:232: DBG PUT Īpi.go:225: DBG Use connection api.go:232: DBG GET %!s() Publish.go:144: DBG Add topology entry for couchbases-MacBook-Pro.local: Publish.go:252: INFO Topology map refreshed every 10s Publish.go:234: INFO No shipper name configured, using hostname 'couchbases-MacBook-Pro.local' Publish.go:208: INFO Using elasticsearch to store the topology Publish.go:185: DBG create output worker: 0x0, 0x0 Output.go:108: INFO Topology expires after 15sĪpi.go:225: DBG Use connection api.go:232: DBG PUT %!s()Īpi.go:225: DBG Use connection api.go:232: DBG PUT map]] Output.go:106: INFO Using Elasticsearch Using index pattern YYYY.MM.DD Geolite.go:52: WARN Couldn't load GeoIP database /elastic/packetbeat/packetbeat.test -systemTest -c /tmp/packetbeat-1.0.0-beta3-darwin/packetbeat.yml verprofile v -d '*'īeat.go:94: DBG Initializing output plugins
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |