Network Desgin

RichardLaing · August 24, 2017, 2:57pm

Hi there I am testing ELK for my current company so far I like the features and have the logs shipping back into the elastic search correctly. My main question is how best to deploy a LAN ELK stack with some hosts in the cloud without comprising the security offered by the firewall.

The ingest node should sit inside a DMZ however good practice is not have anything inside a DMZ that can connect to the local network, how can this issue be mitigated?

RichardLaing · August 25, 2017, 9:42am

After doing some more reading does any one know if elastic search has parterres to detect attackers logged in snort or an IPS?

system · September 22, 2017, 9:42am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
ELK Stack into AKS Elasticsearch	7	522	September 8, 2023
Elastic Endpoint Security missing host Endpoint Security	21	3559	November 4, 2020
ELK Stack on production system Elasticsearch	1	499	September 20, 2017
Fresh ELK setup.. no http? Elasticsearch	17	5497	July 5, 2017
Guidance on Configuring an ELK Stack using seperate hosts for Logstash, Elastic (Master, Data, Ingest) and Kibana Elasticsearch elastic-stack-security	2	313	October 19, 2021

Network Desgin

Related topics