Hi
I have a Cisco Firewall (ASA) logging data to Filebeats -> Logstash -> Elasticsearch. I can see the syslog data in "Discover" section however I do not have any output in SIEM section under Networks. How does the data get parsed into the SIEM dashboards?
Regards
I moved this post to the SIEM forum
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.