14 lines
407 B
Plaintext
14 lines
407 B
Plaintext
# Suricata stats and alerts plugin
|
|
[[inputs.suricata]]
|
|
## Data sink for Suricata stats log.
|
|
# This is expected to be a filename of a
|
|
# unix socket to be created for listening.
|
|
source = "/var/run/suricata-stats.sock"
|
|
|
|
# Delimiter for flattening field keys, e.g. subitem "alert" of "detect"
|
|
# becomes "detect_alert" when delimiter is "_".
|
|
delimiter = "_"
|
|
|
|
# Detect alert logs
|
|
alerts = false
|