Can packetbeat support local reporting of packets that are captured for a particular protocol, such as DNS, DHCP? Or does it have APIs to get the packet information such as DNS options without installing elasticsearch and kibana. Looking for off-the-shelf protocol specific packet capture and either notification or API interface to get the information.
Packetbeat supports outputs other than elasticsearch. For your use case perhaps you could use the kafka output and then consume from Kafka? Or use the logstash output and then configure Logstash to send the information to further destinations. I'm not sure exactly what you mean by "notification" but Logstash has a generic http output to send data to an arbitrary HTTP endpoint (i.e. a web hook).
Hello Shaunak,
Thanks for responding. I would have liked to have packetbeat send the http post with the packet content to our end point.
Regards,
Hello Shaunak,
Have not heard from you. As I mentioned in my previous reply, can packetbeat packet data to an HTTP endpoint directly rather than Logstash doing that please.
Regards,
Ajit
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.