https://github.com/osquery/osquery logo
Powered by
#kolide
Title
# kolide
l

laudecay

11/26/2019, 12:22 AM
also, anyone have experience getting logs from fleet to sumologic?
s

sundsta

11/26/2019, 12:49 AM
Yes. We do Fleet -> GCP PubSub -> Sumo. PubSub can automatically send them to a Sumo HTTPS endpoint, so no polling necessary
l

laudecay

11/26/2019, 2:52 AM
oh i'm full AWS tho
im currently thinking firehose to s3, then s3 to sumo
oh wait aws pubsub can go to https endpoint yay
2 Views
Powered by