Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

elasticsearch doesn't show all of the snort 's index

elasticsearch doesn't show all of the snort 's index

New Contributor

I transferred alert.csv (snort alert) to Apache Metron (Hortonworks Cybersecurity). by NiFi site-to-site, But the number of topology state in storm is not equal to the number snort_index in Elasticsearch. for example:

the number of row in alert.csv is 140 and the number of topology state is 140, But I see 6 docs in Elasticsearch!

How can I solve it?

thanks for answering my question.

85546-elastic.png

85545-storm.png