Hello,
I've a 7.5.1 Elastic Stack environment (Elasticsearch, Logstash and Kibana running in the same node (zeek master 10.0.2.2)) and another node where is running Filebeat (zeek logger 10.0.2.5).
I've followed the steps of Zeek module installation, I didn't get any problem until I try to verify the module status ("Check data" button).
I get the message "No data has been received from this module yet"
Elasticsearch indexs:
I've activated xpack security in Elasticsearch and defined passwords to all built-in users. So, I'm using "elastic" user.
Someone can explain me how I can check what's going wrong?
Thanks in advance,
Ander.
