Is there any rabbitmq support/plugin for suricata log

Hacker7 · May 18, 2022, 11:03am

Hi
Do suricata support rabbitmq
is there any rabbitmq support/plugin for suricata log

thanks

ish · May 19, 2022, 2:25pm

No, at least I’m not aware of any support. As our EVE logs are simple line based JSON logs, maybe there is some generic client out there that works. I see that Logstash has a RabbitMQ output module for instances.

Andreas_Herz · May 20, 2022, 6:41am

syslog-ng has AMQP support, so that should be an option to forward the logs.

Topic		Replies	Views
Eve.json only shows "event_type":"flow" Help	7	1351	October 22, 2020
Suricata logs to syslog server	1	254	January 12, 2024
Suricata no longer write into Eve files Help	2	1835	May 7, 2021
Suricata generate log files instead of Json Help suricata	1	151	November 22, 2023
Suricata 6.0.9 on Ubuntu 22.04 not getting traffic at all Help	11	794	December 24, 2022

Is there any rabbitmq support/plugin for suricata log

Related Topics