securityonion
securityonion copied to clipboard
FEATURE: Implement TLS for Strelka communication
Up until now, all Strelka communication has been local to a node. With the option to upload files to the cluster from an external source like an analyst workstation, we should consider adding TLS for frontend access.
Depends on: https://github.com/Security-Onion-Solutions/securityonion/issues/7828
-
so-strelka-filestream
(bind-mount sensor cert,extra_hosts
for hostname resolution) -
filestream.yaml
-
frontend.yaml
- nginx config (
57314
- https->57313
) - Update
so-allow