What is these hosts that ocasionally appears while on elastic trial? I've seen them a few times but still don't know what it means...
Exactly where / what context are you seeing that? What screen?
Can you provide a little more information please.
1 Like
Most Likely You enable Logs and Metrics Collection back to this same cluster.
These are just the hosts / containers that your cluster is running on... this is Cloud so some underlying hosts are ephemeral.
SIEM automatically picks them up, typically the monitoring logs are sent to a separate monitoring cluster and would not show up here but since you are shipping them to the same source / destination they show up.
The SIEM app automatically reports any host that it see from a number of preset data sources so that is what you are seeing.
1 Like
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.