UNPKG

nsyslog

Version:

Modular new generation log agent. Reads, transform, aggregate, correlate and send logs from sources to destinations

github.com/solzimer/nsyslog

solzimer/nsyslog

53 lines (43 loc) 1.25 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
const Input = require('../../lib/nsyslog').Core.Input; const EVT = { "timestamp":"2018-09-04T11:10:38.000220+0100","flow_id":727167390401089,"event_type":"flow", "src_ip":"10.192.231.200","src_port":123,"dest_ip":"150.214.94.10","dest_port":123,"proto":"UDP", "app_proto":"failed","flow":{"pkts_toserver":1,"pkts_toclient":0,"bytes_toserver":90,"bytes_toclient":0, "start":"2018-09-04T11:10:07.672321+0100","end":"2018-09-04T11:10:07.672321+0100","age":0, "state":"new","reason":"timeout","alerted":false} }; function randIp() { let res = []; for(let i=0;i<4;i++) res.push(Math.floor(Math.random()*5)); return res.join("."); } function randPort() { return Math.floor(Math.random()*65536); } class EveInput extends Input { constructor(id) { super(id); this.paused = false; } configure(config,callback) { callback(); } get mode() { return Input.MODE.pull; } next(callback) { setImmediate(()=>{ EVT.src_ip = randIp(); EVT.dest_ip = randIp(); EVT.src_p = randPort(); EVT.dest_p = randPort(); let msg = {originalMessage : JSON.stringify(EVT)}; callback(null,msg); }); } key(entry) { return `${this.id}@eve`; } } module.exports = EveInput;