Support Questions
Find answers, ask questions, and share your expertise

Im trying to push SMB bro logs to kafka of both smb_files.log and smb_mapping.log !!!

New Contributor

Im trying to push both smb_files.log and smb_mapping.log to kafka topic . Im not sure what is the proper filter or identifier i can use for instance , i have tried (SMB_Files::LOG) and (SBM_Mapping::LOG) but its failing!!!

So far i have managed to push : -

redef Kafka::logs_to_send = set(HTTP::LOG,PE::LOG, SOCKS::LOG,DNS::LOG ,SMTP::LOG ,SSL::LOG ,FTP::LOG,KRB::LOG,SSH::LOG,Notice::log ,DHCP::LOG ,mysql::LOG)