Hortonworks Docs
»
Hortonworks Cybersecurity Platform 1.7.1
»
Adding a New Telemetry Source
Adding a New Telemetry Source
Also available as:
Adding a New Telemetry Data Source
Telemetry Data Source Parsers Bundled with HCP
Snort
Bro
YAF (NetFlow)
Indexing
pcap
Prerequisites to Adding a New Telemetry Data Source
Streaming Data into HCP Overview
Stream Data Using NiFi
Creating Parsers
Create a Parser for Your New Data Source by Using the Management UI
Create a Parser for Your New Data Source by Using the CLI
Create Multiple Parsers on One Topology
Chain Parsers
Transform Your New Data Source Parser Information by Using the Management UI
Tune Parser Storm Parameters by Using the Management UI
Configuring Indexing
Understanding Indexing
Default Configuration
Creating a New Index Template or Schema
Index HDFS Tuning
Turn Off HDFS Writer
Upgrading to Elasticsearch 5.6.2
Elasticsearch Type Mapping Changes
Update Elasticsearch Templates to Work with Elasticsearch 5.x
Update Existing Indexes to Work with Elasticsearch 5x
Add X-Pack Extension to Elasticsearch
Troubleshooting Indexing
Understanding Global Configuration
Create Global Configurations
Verify That Events Are Indexed
Index HDFS Tuning
For information on tuning indexing, see
General Tuning Suggestions
.
Parent topic:
Configuring Indexing
© 2012–2019, Hortonworks, Inc.
Document licensed under the
Creative Commons Attribution ShareAlike 4.0 License
.
Hortonworks.com
|
Documentation
|
Support
|
Community