Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-2341

Create a processor to parse logs formated using CEF

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 1.1.0
    • None
    • None

    Description

      As NiFi continue to increase its abilities to complement SIEM, Splunk and ELK deployments, a number of users will be looking to parse CEF formatted logs[1][2].

      CEF is a format specified by Arcsight (now part of HPE) and is described in detail in here:

      https://www.protect724.hpe.com/docs/DOC-1072

      [1] http://apache-nifi.1125220.n5.nabble.com/Suggestion-of-processors-td9795.html
      [2] https://community.hortonworks.com/questions/43185/which-processor-is-used-to-parse-cef-format-logs.html

      Attachments

        Issue Links

          links to

          Web Link GitHub Pull Request #785

          Activity

            People

              trixpan Andre F de Miranda
              trixpan Andre F de Miranda
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: