KTS7
KTS7 copied to clipboard
StamusNetworks
Kibana 7 Templates for Suricata IDPS Threat Hunting
Opensearch + Dashboards at 2.0.0, linked to issue: https://github.com/StamusNetworks/KTS7/issues/6 Importing gives error: ``` [opensearch-dashboards@dashboards-556c54898c-wmfbh config]$ ./importsuricata.sh % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload...
Hi Ive tried to import the dashboards following the method Request to Elasticsearch failed: {"error":{"root_cause":[{"type":"script_exception","reason":"runtime error","script_stack":["org.elasticsearch.search.lookup.LeafDocLookup.get(LeafDocLookup.java:94)","org.elasticsearch.search.lookup.LeafDocLookup.get(LeafDocLookup.java:41)","doc['flow_id'].value"," ^---- HERE"],"script":"doc['flow_id'].value","lang":"painless"}],"type":"search_phase_execution_exception","reason":"all shards failed","phase":"query","grouped":true,"failed_shards":[{"shard":0,"index":"logstash-2020.04.29-000001","node":"RmOnDn2mSsWSKkNKg2bgsA","reason":{"type":"script_exception","reason":"runtime error","script_stack":["org.elasticsearch.search.lookup.LeafDocLookup.get(LeafDocLookup.java:94)","org.elasticsearch.search.lookup.LeafDocLookup.get(LeafDocLookup.java:41)","doc['flow_id'].value"," ^---- HERE"],"script":"doc['flow_id'].value","lang":"painless","caused_by":{"type":"illegal_argument_exception","reason":"No field found for [flow_id] in mapping with...
OpenSearch is a open source clone of ElasticSearch which has gone source available only with restrictive licensing (SSPL/Elasticv2). We are preferring OpenSearch for this reason. For now the dashboards will...
Dashboard/SN-ALERTS with error Error fetching data Bad Request Error: Bad Request at Fetch._callee3$ (http://10.10.84.201/32141/bundles/commons.bundle.js:3:1292397) at l (http://10.10.84.201/32141/bundles/kbn-ui-shared-deps/kbn-ui-shared-deps.js:288:969217) at Generator._invoke (http://10.10.84.201/32141/bundles/kbn-ui-shared-deps/kbn-ui-shared-deps.js:288:968970) at Generator.forEach.e. [as next] (http://10.10.84.201/32141/bundles/kbn-ui-shared-deps/kbn-ui-shared-deps.js:288:969574) at asyncGeneratorStep (http://10.10.84.201/32141/bundles/commons.bundle.js:3:1285920) at _next...
`Failed to install template {:message=>"Got response code '400' contacting Elasticsearch at URL 'https://10.10.10.10:9200/_index_template/ecs-logstash'", :exception=>LogStash::Outputs::ElasticSearch::HttpClient::Pool::BadResponseCodeError, :backtrace=>["/usr/share/logstash/vendor/bundle/jruby/3.1.0/gems/logstash-output-elasticsearch-11.22.2-java/lib/logstash/outputs/elasticsearch/http_client/manticore_adapter.rb:84:in `perform_request'", "/usr/share/logstash/vendor/bundle/jruby/3.1.0/gems/logstash-output-elasticsearch-11.22.2-java/lib/logstash/outputs/elasticsearch/http_client/pool.rb:355:in `perform_request_to_url'", "/usr/share/logstash/vendor/bundle/jruby/3.1.0/gems/logstash-output-elasticsearch-11.22.2-java/lib/logstash/outputs/elasticsearch/http_client/pool.rb:341:in `block in perform_request'", "/usr/share/logstash/vendor/bundle/jruby/3.1.0/gems/logstash-output-elasticsearch-11.22.2-java/lib/logstash/outputs/elasticsearch/http_client/pool.rb:429:in `with_connection'", "/usr/share/logstash/vendor/bundle/jruby/3.1.0/gems/logstash-output-elasticsearch-11.22.2-java/lib/logstash/outputs/elasticsearch/http_client/pool.rb:340:in `perform_request'", "/usr/share/logstash/vendor/bundle/jruby/3.1.0/gems/logstash-output-elasticsearch-11.22.2-java/lib/logstash/outputs/elasticsearch/http_client/pool.rb:348:in `block in Pool'",...
Metadata
Owner
Metadata
Kibana 7 Templates for Suricata IDPS Threat Hunting