KTS6 icon indicating copy to clipboard operation
KTS6 copied to clipboard
verified publisher icon StamusNetworks

Connect to Suricata

Open MANN0M1 opened this issue 3 years ago • 3 comments

How are Suricata and Kibana Dashboard connected? Because Kibana Dashboard does not display any graph

MANN0M1 avatar Dec 29 '21 11:12 MANN0M1

You would need to setup log forwarding / ELK stack. If you want a quick way to try it out - https://github.com/StamusNetworks/SELKS/blob/master/docker/README.rst

-- Regards, Peter Manev

On 29 Dec 2021, at 12:42, MANN0M1 @.***> wrote:

 How are Suricata and Kibana Dashboard connected? Because Kibana Dashboard does not display any graph

— Reply to this email directly, view it on GitHub, or unsubscribe. Triage notifications on the go with GitHub Mobile for iOS or Android. You are receiving this because you are subscribed to this thread.

pevma avatar Dec 29 '21 12:12 pevma

perhaps ,Is there any guide for me to understand how to connect between Kibana and Suricata? I am still new to ELK. I also tried to follow the link you gave me, but I got the same result.

MANN0M1 avatar Jan 03 '22 10:01 MANN0M1

The easiest and fastest way to try it out on Linux would be - https://github.com/StamusNetworks/SELKS/blob/master/docker/README.rst#install-process

pevma avatar Jan 04 '22 17:01 pevma