-
Notifications
You must be signed in to change notification settings - Fork 4.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Filebeat] Add Zeek NTP Fileset #24224
Conversation
💚 Build Succeeded
Expand to view the summary
Build stats
Test stats 🧪
Trends 🧪💚 Flaky test reportTests succeeded. Expand to view the summary
Test stats 🧪
|
I'm trying to generate the expected log files but getting a weird timeout. Have anyone seen this before??
|
I'm running |
3636ebd
to
5744a87
Compare
Pinging @elastic/security-external-integrations (Team:Security-External Integrations) |
Thanks this looks awesome. The easiest way to generate the expected golden files is to let the mage target handle it. In the
That will generate the golden files, limiting it to just the zeek module and the ntp fileset. |
5744a87
to
1b73d29
Compare
Tried this too, still getting a timeout error. I think its just me trying to run this on a WSL 2 VM. THough didn't have this issue with my previous PR. Going to try on a dedicated system. |
Its still timing out as shown in the post above. I can't seem to figure out what's causing it. |
1b73d29
to
9499306
Compare
turns out in manifest.yml you have:
it should be |
ece6da4
to
8b9ba9f
Compare
🤦♂️ 🤦♂️ I have updated the code and it should be ready to run the pipelines |
8b9ba9f
to
332c103
Compare
@leehinman @andrewkroh can 1 of u run the jenkins pipeline? |
332c103
to
f7a01ec
Compare
jenkins, run tests |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM, and tests are passing. I just have minor comments to improve the docs.
f7a01ec
to
abed2c7
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM. I updated the docs.
jenkins, run tests |
Add the NTP fileset to the Zeek Module. Co-authored-by: Andrew Kroh <[email protected]> (cherry picked from commit ef48945)
Add the NTP fileset to the Zeek Module. Co-authored-by: Andrew Kroh <[email protected]> (cherry picked from commit ef48945) Co-authored-by: Alex Resnick <[email protected]>
What does this PR do?
Add the NTP fileset to the Zeek Module
Why is it important?
One of the remaining Zeek log files that isn't parsed already by Filebeat.
Checklist
CHANGELOG.next.asciidoc
orCHANGELOG-developer.next.asciidoc
.