Issue with Sguil
61 views
Skip to first unread message
Suman Srivastava
Apr 11, 2021, 3:08:23 PM4/11/21
to security-onion
For some reason when I log onto Sguil, NO events populate. I did try sudo so-test to generate events from pcaps to show in Squil. I also tried sudo so-import pcap filepath of stored pcap.
I am not sure how to get events to populate in Sguil?
Thank You
Doug Burks
Apr 12, 2021, 3:09:21 PM4/12/21
to securit...@googlegroups.com
You could try looking at log files and the output of the sostat command for additional clues. However, Security Onion 16.04 reaches End Of Life this Friday 4/16 so you're probably better off installing the new Security Onion 2.
--
Please keep in mind that Security Onion 16.04 reaches End Of Life soon!
https://blog.securityonion.net/2020/10/6-month-eol-notice-for-security-onion.html
---
You received this message because you are subscribed to the Google Groups "security-onion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to security-onio...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/security-onion/62c24b32-6ba4-4d36-a129-26b050a5f25en%40googlegroups.com.
Doug Burks
Founder and CEO
Security Onion Solutions, LLC
Founder and CEO
Security Onion Solutions, LLC
Reply all
Reply to author
Forward
0 new messages