THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
- Drag a processor to the canvas (do this by the dragging the processor icon which is the first icon on the toolbar).
- Select the TailFile type of processor, then select Add.
- Right click on the processor and select Configure to display the Configure Processor dialog box. In the Settings tab change the name to "Ingest Squid Events"
- In the Properties tab, configure the following:
- In the Properties tab, configure the following:
- Drag another processor to the canvas.
- Select the PutKafka type of processor, then select Add.
- Right click on the processor and select Configure.
- In the Settings tab, change the name to "Stream to Metron,” then click the relationship checkboxes for failure and success.
- In the Properties tab, set the following three properties:
- Known Brokers: $KAFKA_HOST:6667
- Topic Name: squid
- Client Name: nifi-squid
- Create a connection by dragging the arrow from the Ingest Squid Events processor to the Stream to Metron processor.
- Press the Shift key and select the entire flow, then click the play button (green arrow). You should see all of the processor icons turn into green arrows like below:
- Generate some data using squidclient (do this for about 20+ sites).
squidclient -h 127.0.0.1 "http://www.cnn.com"
- You should see metrics on the processor of data being pushed into Metron.
- Look at the Storm UI for the parser topology and you should see tuples coming in.
- After about 5 minutes, you should see a new Elastic Search index called squid_index* in the Elastic Admin UI.
...