-
Currently, when we reinstall IPFix-RITA or install a new version of IPFix-RITA, we wipe everything except the configuration files. However, the config file is often set up to talk to the docker host o…
-
Hi,
Thought I would try everything before coming here. I have tried everything I can. The issue is simple the pipeline is just not being created in ElasticSearch.
1. Machine is a Xeon CPU, Memor…
-
Using ELK 6.4.x
I have elastiflow installed and inputs up, but elasticsearch is not receiving anything.
I have the follow output
```
output {
if [type] == "netflow" {
stdout { codec =…
-
panic: runtime error: index out of range
goroutine 143 [running]:
github.com/VerizonDigital/vflow/ipfix.MemCache.getShard(0x0, 0x0, 0x0, 0x100, 0xc42095600c, 0x10, 0x10, 0x0, 0x0)
/home/xxx/go/s…
-
Currently it appears that there is an issue reading the IPFIX Logs incoming from the MikroTik router. The error follows ERRO[1082] input map must contain key 'netflow.flowStartMilliseconds'
The in…
-
I have Elastic Stack 6.7 running on the same host. It runs several pipelines to get logs from cisco devices (syslog), vmware (syslog) and windows (winlogbeat). I've installed Elastiflow following inst…
-
RITA is moving to version 2.0. Thankfully, it appears the input schemas are backwards compatible. We will need to bump the ImportVersion version string in the MetaDatabase records we create to 2.0.
…
-
When running IPFIX-RITA capturing logs starting at 4PM and going until about 6:15PM MST on December 6th I discovered that the logs rolled over and started saving to December 7th.
I believe this is …
-
### PFSense is a common OS used for routing based on BSD. In order to support IPFIX, PFSense employs the softflowd module.
[Softflowd](https://github.com/irino/softflowd) is an open source softwar…
-
This is a fresh install of ELK Stack 5.6.3, and I receive this errors in logstash-plain.log:
1) Can't (yet) decode flowset id 512 from observation domain id 0, because no template to decode it with…