From owner-freebsd-elastic@freebsd.org Thu Dec 5 17:18:06 2019 Return-Path: Delivered-To: freebsd-elastic@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C84FA1CEBA7 for ; Thu, 5 Dec 2019 17:18:06 +0000 (UTC) (envelope-from dpd@dpdtech.com) Received: from mailman.nyi.freebsd.org (mailman.nyi.freebsd.org [IPv6:2610:1c1:1:606c::50:13]) by mx1.freebsd.org (Postfix) with ESMTP id 47TMqf4l47z4Rd2 for ; Thu, 5 Dec 2019 17:18:06 +0000 (UTC) (envelope-from dpd@dpdtech.com) Received: by mailman.nyi.freebsd.org (Postfix) id 9FEA61CEBA2; Thu, 5 Dec 2019 17:18:06 +0000 (UTC) Delivered-To: elastic@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 9E77D1CEBA1 for ; Thu, 5 Dec 2019 17:18:06 +0000 (UTC) (envelope-from dpd@dpdtech.com) Received: from mail-pf1-x429.google.com (mail-pf1-x429.google.com [IPv6:2607:f8b0:4864:20::429]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 47TMqd49BBz4Rd1 for ; Thu, 5 Dec 2019 17:18:05 +0000 (UTC) (envelope-from dpd@dpdtech.com) Received: by mail-pf1-x429.google.com with SMTP id s18so1916501pfm.4 for ; Thu, 05 Dec 2019 09:18:05 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dpdtech.com; s=google; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=S6CduBays3iKZiaUwMARAedR06r19gV4752hyBcnpy8=; b=NLeC7v9jCrcv3u9y6ryB9rQg5jI6gorYL2qT5VzG65fJRCjT76wnar7lx5EhQsgR8E GkeY0qf/NcL8n0Rt+ccr7YlYC5AcfV1n5vBOnCEAMZyouYNEHGqZqyaZvwU16QhskgXL FRHTzqIdYAfFkSZ2C42goUmDQa+9fewCsfIKE= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=S6CduBays3iKZiaUwMARAedR06r19gV4752hyBcnpy8=; b=sQKup6DuP6JMid+RhlTTc+DP6aGLJkg68wTgWIMTwBk9KilDtO67cM+jBZhDPZHtvS m7iWr7rpRq1XLTyP7vb6vXyf0DcpqlgOapbG9cfhY5PDyO97UQLOsUvbk4M7qI6JCgtx o3fLX87cS6GhgjFRII4/nb90U2Bm61KV3VFIrJL36bi6AOvTvt9hUNDfLTKZJdw9rwpW zLWxTr9gqH5y4sRWds85EHj+/lZ7/EJBPztQoLjyAfcomU3HNDXITCpCi5+9OaXJaOO8 U37pFjTXcmLjiCx5UoKtIAJj04ysvHwyPbr4x+87PzcFOwkVN2YiUJ/DPLVV1VsvK9jn imVQ== X-Gm-Message-State: APjAAAVFirb5CZvv5l23boU90RjRXHjkJetB1fvDe+SuHpqwMuw5C92e xdAOJgK0rBQ0MM0yUaU6MebCXA== X-Google-Smtp-Source: APXvYqyxTrTh/xs/7PIRhywqx0urD05+vnlY2r/ruISBX6cnQWGQTCSGglejyHSTsp8V+pWQLi1gYw== X-Received: by 2002:a62:d444:: with SMTP id u4mr10015669pfl.153.1575566283554; Thu, 05 Dec 2019 09:18:03 -0800 (PST) Received: from [192.168.1.242] (173-13-188-45-sfba.hfc.comcastbusiness.net. [173.13.188.45]) by smtp.gmail.com with ESMTPSA id y76sm3460987pfc.87.2019.12.05.09.18.01 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 05 Dec 2019 09:18:02 -0800 (PST) From: "David P. Discher" Message-Id: <6D3B179D-5D2D-4772-9A93-0DD183A82709@dpdtech.com> Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Subject: Re: FreeBSD: zeek module on beats Date: Thu, 5 Dec 2019 09:18:32 -0800 In-Reply-To: Cc: Juraj Lutter , elastic@freebsd.org To: Davide Robusto References: <5EBD9158-8961-437E-BA4D-6D7B3CE064D8@lutter.sk> X-Mailer: Apple Mail (2.3445.104.11) X-Rspamd-Queue-Id: 47TMqd49BBz4Rd1 X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=dpdtech.com header.s=google header.b=NLeC7v9j; dmarc=none; spf=none (mx1.freebsd.org: domain of dpd@dpdtech.com has no SPF policy when checking 2607:f8b0:4864:20::429) smtp.mailfrom=dpd@dpdtech.com X-Spamd-Result: default: False [-2.32 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_DKIM_ALLOW(-0.20)[dpdtech.com:s=google]; NEURAL_HAM_MEDIUM(-1.00)[-0.999,0]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[elastic@freebsd.org]; DMARC_NA(0.00)[dpdtech.com]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; RCVD_COUNT_THREE(0.00)[3]; TO_MATCH_ENVRCPT_SOME(0.00)[]; DKIM_TRACE(0.00)[dpdtech.com:+]; RCVD_IN_DNSWL_NONE(0.00)[9.2.4.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.4.6.8.4.0.b.8.f.7.0.6.2.list.dnswl.org : 127.0.5.0]; IP_SCORE(-2.52)[ip: (-8.37), ipnet: 2607:f8b0::/32(-2.23), asn: 15169(-1.93), country: US(-0.05)]; R_SPF_NA(0.00)[]; FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[]; INTRODUCTION(2.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[] Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.29 X-BeenThere: freebsd-elastic@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Support of ElasticSearch-related ports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Dec 2019 17:18:06 -0000 Please vote up the git hub issue - so elastic will move FreeBSD to more = of a =E2=80=9CTier 1=E2=80=9D support platform. - https://twitter.com/daviddpd/status/1199395603639201792 = - https://github.com/elastic/beats/issues/1034#issuecomment-558401035 = I tried to force port beats-7.x =E2=80=A6 but there are goLang = compile/types errors on FreeBSD. -- David P. Discher=20 https://davidpdischer.com/ > On Dec 5, 2019, at 7:42 AM, Davide Robusto = wrote: >=20 > Hi Juraj >=20 > Thanks for the quick response. >=20 > I understand that will not be released immediately, in this regard I = have > two questions: >=20 > 1. you could give me the instructions to be able to create the = ports > of the version of "beats-7.x" for FreeBSD starting from the port of = the > version 6.8.5 adding all the beats family programs updated to the 7.x > version? I=E2=80=99m sure I will need to modify also the Makefile and = the pkg-plist > for that. >=20 > 2. Using the version of filebeat8.0 (master branch) it can be > installed with a custom path on FreeBSD 12.0 ? >=20 >=20 > Best regards >=20 > Davide Robusto >=20 > Il giorno gio 5 dic 2019 alle ore 13:44 Juraj Lutter = ha > scritto: >=20 >> Hi, >>=20 >> not sure what you want to achieve, but: >>=20 >> The sysutils/beats is already at version 6.8.5. >> For zeek, there already is security/zeek created. >>=20 >> However, zeek module is only supported in beats 7.x (as part of whole = ES7 >> stack). >>=20 >> We currently do not have ES7 stack in ports, but if nothing serious >> happens, >> I will spend some time on getting ES7 ports polished, tested and = commited. >>=20 >> Hope this helped. >>=20 >> =E2=80=94 >> Juraj Lutter >> URL: http://www.wilbury.sk/ >> XMPP: juraj@lutter.sk >> Do not hesitate to inquiry for professional services! >>=20 >>> On 5 Dec 2019, at 12:27, Davide Robusto = wrote: >>>=20 >>> Hello, my name is Davide. >>>=20 >>> I=E2=80=99m trying to install the ELK stack on FreeBSD but i have = some problems. >>>=20 >>> In particular my problems it concernes =E2=80=9CBeats=E2=80=9D and = his version on >> FreeBSD. >>>=20 >>> I read on the web that the ports=E2=80=99s last version released of = =E2=80=9CBeats=E2=80=9D is >>> 6.8.5 but in this one the module =E2=80=9CZeek=E2=80=9D is not = supported, so i ask you if >>> it=E2=80=99s possible to explain me how I can make an upgraded = version of the >> ports >>> starting from the 6.8.5. >>>=20 >>> My attempt was a bit forcefull because i download the last version = of >>> =E2=80=9CBeats=E2=80=9D, i build all files (like filebeat, = metricbeat etc with the >> command >>> gmake) but after that i dont like too much to move the binary file = into >> the >>> installation location of (for example) beats-6.8.5. >>>=20 >>> Could you explain how to create the =E2=80=9Cports for = beats-6.8.5=E2=80=9D, please? >>>=20 >>> I hope that the problem=E2=80=99s resolution can be helpful to the = comunity of >>> FreeBSD and also help you guys to release a new version of = =E2=80=9Cbeats=E2=80=9D on >>> FreeBSD. >>>=20 >>> Best regards, >>> Davide Robusto >>> _______________________________________________ >>> freebsd-elastic@freebsd.org mailing list >>> https://lists.freebsd.org/mailman/listinfo/freebsd-elastic >>> To unsubscribe, send any mail to " >> freebsd-elastic-unsubscribe@freebsd.org" >>=20 >>=20 > _______________________________________________ > freebsd-elastic@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-elastic > To unsubscribe, send any mail to = "freebsd-elastic-unsubscribe@freebsd.org"