From owner-freebsd-elastic@freebsd.org Thu Dec 5 12:44:47 2019 Return-Path: Delivered-To: freebsd-elastic@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 631861C8DB2 for ; Thu, 5 Dec 2019 12:44:47 +0000 (UTC) (envelope-from SRS0=mIwM=Z3=lutter.sk=juraj@ns2.wilbury.net) Received: from mailman.nyi.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 47TFmG3LZMz49Kc for ; Thu, 5 Dec 2019 12:44:46 +0000 (UTC) (envelope-from SRS0=mIwM=Z3=lutter.sk=juraj@ns2.wilbury.net) Received: by mailman.nyi.freebsd.org (Postfix) id 70B571C8DB1; Thu, 5 Dec 2019 12:44:46 +0000 (UTC) Delivered-To: elastic@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 6F4861C8DB0 for ; Thu, 5 Dec 2019 12:44:46 +0000 (UTC) (envelope-from SRS0=mIwM=Z3=lutter.sk=juraj@ns2.wilbury.net) Received: from ns2.wilbury.net (ns2.wilbury.net [92.60.51.55]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "svc.wilbury.net", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 47TFmF0qyFz49Kb for ; Thu, 5 Dec 2019 12:44:44 +0000 (UTC) (envelope-from SRS0=mIwM=Z3=lutter.sk=juraj@ns2.wilbury.net) Received: from [10.18.48.36] (binarium-226.b2b.bonet.sk [92.60.50.226]) (Authenticated sender: juraj@lutter.sk) by svc.wilbury.net (Postfix) with ESMTPSA id 2A5083AC9D; Thu, 5 Dec 2019 13:44:34 +0100 (CET) Content-Type: text/plain; charset=utf-8 Mime-Version: 1.0 (Mac OS X Mail 13.0 \(3601.0.10\)) Subject: Re: FreeBSD: zeek module on beats From: Juraj Lutter In-Reply-To: Date: Thu, 5 Dec 2019 13:44:31 +0100 Cc: elastic@freebsd.org Content-Transfer-Encoding: quoted-printable Message-Id: <5EBD9158-8961-437E-BA4D-6D7B3CE064D8@lutter.sk> References: To: Davide Robusto X-Mailer: Apple Mail (2.3601.0.10) X-Rspamd-Queue-Id: 47TFmF0qyFz49Kb X-Spamd-Bar: +++++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of SRS0=mIwM=Z3=lutter.sk=juraj@ns2.wilbury.net has no SPF policy when checking 92.60.51.55) smtp.mailfrom=SRS0=mIwM=Z3=lutter.sk=juraj@ns2.wilbury.net X-Spamd-Result: default: False [5.59 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; RCVD_TLS_ALL(0.00)[]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; IP_SCORE(0.02)[country: SK(0.09)]; MIME_GOOD(-0.10)[text/plain]; MIME_TRACE(0.00)[0:+]; DMARC_NA(0.00)[lutter.sk]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.90)[0.900,0]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; NEURAL_SPAM_LONG(0.98)[0.976,0]; R_SPF_NA(0.00)[]; FORGED_SENDER(0.30)[juraj@lutter.sk,SRS0=mIwM=Z3=lutter.sk=juraj@ns2.wilbury.net]; FREEMAIL_TO(0.00)[gmail.com]; R_DKIM_NA(0.00)[]; INTRODUCTION(2.00)[]; ASN(0.00)[asn:44185, ipnet:92.60.48.0/22, country:SK]; FROM_NEQ_ENVFROM(0.00)[juraj@lutter.sk,SRS0=mIwM=Z3=lutter.sk=juraj@ns2.wilbury.net]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-elastic@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Support of ElasticSearch-related ports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Dec 2019 12:44:47 -0000 Hi, not sure what you want to achieve, but: The sysutils/beats is already at version 6.8.5. For zeek, there already is security/zeek created. However, zeek module is only supported in beats 7.x (as part of whole = ES7 stack). We currently do not have ES7 stack in ports, but if nothing serious = happens, I will spend some time on getting ES7 ports polished, tested and = commited. Hope this helped. =E2=80=94 Juraj Lutter URL: http://www.wilbury.sk/ XMPP: juraj@lutter.sk Do not hesitate to inquiry for professional services! > On 5 Dec 2019, at 12:27, Davide Robusto = wrote: >=20 > Hello, my name is Davide. >=20 > I=E2=80=99m trying to install the ELK stack on FreeBSD but i have some = problems. >=20 > In particular my problems it concernes =E2=80=9CBeats=E2=80=9D and his = version on FreeBSD. >=20 > I read on the web that the ports=E2=80=99s last version released of = =E2=80=9CBeats=E2=80=9D is > 6.8.5 but in this one the module =E2=80=9CZeek=E2=80=9D is not = supported, so i ask you if > it=E2=80=99s possible to explain me how I can make an upgraded version = of the ports > starting from the 6.8.5. >=20 > My attempt was a bit forcefull because i download the last version of > =E2=80=9CBeats=E2=80=9D, i build all files (like filebeat, metricbeat = etc with the command > gmake) but after that i dont like too much to move the binary file = into the > installation location of (for example) beats-6.8.5. >=20 > Could you explain how to create the =E2=80=9Cports for beats-6.8.5=E2=80= =9D, please? >=20 > I hope that the problem=E2=80=99s resolution can be helpful to the = comunity of > FreeBSD and also help you guys to release a new version of =E2=80=9Cbeat= s=E2=80=9D on > FreeBSD. >=20 > Best regards, > Davide Robusto > _______________________________________________ > freebsd-elastic@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-elastic > To unsubscribe, send any mail to = "freebsd-elastic-unsubscribe@freebsd.org"