[Snort-users] Snort+logstash

Kanan Alkanan kanan_sd at hotmail.com
Tue Sep 12 23:58:27 EDT 2017


Hi all
I'm trying to filter snort alerts and display filtered information on kibana using logstasg, when I test logstash and snort both their configuration are fine but still can't get the needed information bases on my filter. 

Second question is that how to monitor multiple interfaces in real running environment assuming each tenant has multiple VMs is it practical to monitor every VM's interface?

Thanks


More information about the Snort-users mailing list