Filebeat is not sending Snort logs to Logstash

manuelm · February 2, 2019, 12:08am

Hi!

I’m trying to send alerts from Snort IDS to Elasticsearch, therefore I'm using 3 technologies:

I am expecting to see snort's alert logs when I check "http://localhost:9200/ola-*/_search?pretty", however nothing is retrieved.

I’m struggling to fix this problem.

Thanks in advance!

system · March 2, 2019, 12:09am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.