Struct usiem_elasticsearch::output::ElasticSearchOutput
source · [−]pub struct ElasticSearchOutput { /* private fields */ }
Expand description
Basic SIEM component for sending logs to ElasticSearch
Implementations
sourceimpl ElasticSearchOutput
impl ElasticSearchOutput
pub fn new(config: ElasticOuputConfig) -> ElasticSearchOutput
pub fn register_schema(&mut self)
Trait Implementations
sourceimpl SiemComponent for ElasticSearchOutput
impl SiemComponent for ElasticSearchOutput
sourcefn run(&mut self)
fn run(&mut self)
Execute the logic of this component in an infinite loop. Must be stopped using Commands sent using the channel.
sourcefn set_storage(&mut self, conn: Box<dyn SiemComponentStateStorage>)
fn set_storage(&mut self, conn: Box<dyn SiemComponentStateStorage>)
Allow to store information about this component like the state or conigurations.
sourcefn capabilities(&self) -> SiemComponentCapabilities
fn capabilities(&self) -> SiemComponentCapabilities
Capabilities and actions that can be performed on this component
fn name(&self) -> &str
sourcefn local_channel(&self) -> Sender<SiemMessage>
fn local_channel(&self) -> Sender<SiemMessage>
Get the channel to this component
sourcefn set_log_channel(
&mut self,
_sender: Sender<SiemLog>,
receiver: Receiver<SiemLog>
)
fn set_log_channel(
&mut self,
_sender: Sender<SiemLog>,
receiver: Receiver<SiemLog>
)
Sets the channel of this component. It’s the kernel who sets the channel
sourcefn set_kernel_sender(&mut self, sender: Sender<SiemMessage>)
fn set_kernel_sender(&mut self, sender: Sender<SiemMessage>)
Sets the channel to communicate with the kernel.
fn set_id(&mut self, id: u64)
sourcefn duplicate(&self) -> Box<dyn SiemComponent>
fn duplicate(&self) -> Box<dyn SiemComponent>
Allows the Kernel to duplicate this component
sourcefn set_datasets(&mut self, _datasets: Vec<SiemDataset>)
fn set_datasets(&mut self, _datasets: Vec<SiemDataset>)
Initialize the component with the datasets before executing run
fn id(&self) -> u64
Auto Trait Implementations
impl !RefUnwindSafe for ElasticSearchOutput
impl Send for ElasticSearchOutput
impl !Sync for ElasticSearchOutput
impl Unpin for ElasticSearchOutput
impl !UnwindSafe for ElasticSearchOutput
Blanket Implementations
sourceimpl<T> BorrowMut<T> for T where
T: ?Sized,
impl<T> BorrowMut<T> for T where
T: ?Sized,
const: unstable · sourcefn borrow_mut(&mut self) -> &mut T
fn borrow_mut(&mut self) -> &mut T
Mutably borrows from an owned value. Read more
sourceimpl<T> Instrument for T
impl<T> Instrument for T
sourcefn instrument(self, span: Span) -> Instrumented<Self>
fn instrument(self, span: Span) -> Instrumented<Self>
sourcefn in_current_span(self) -> Instrumented<Self>
fn in_current_span(self) -> Instrumented<Self>
impl<V, T> VZip<V> for T where
V: MultiLane<T>,
impl<V, T> VZip<V> for T where
V: MultiLane<T>,
fn vzip(self) -> V
sourceimpl<T> WithSubscriber for T
impl<T> WithSubscriber for T
sourcefn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self> where
S: Into<Dispatch>,
fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self> where
S: Into<Dispatch>,
Attaches the provided Subscriber
to this type, returning a
WithDispatch
wrapper. Read more
sourcefn with_current_subscriber(self) -> WithDispatch<Self>
fn with_current_subscriber(self) -> WithDispatch<Self>
Attaches the current default Subscriber
to this type, returning a
WithDispatch
wrapper. Read more