Hello,
I am looking for a way to parse events from winlogbeats through logstash to various destinations. We will be sending some events into Elasticsearch, some into tenable security center, and some into Arcsight. What is the best way to handle sending the events to Arcsight (ideally in CEF)
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.