Wazuh | Mailing List

Dear Team , I have two instances for Wazuh, Master and Worker node setup Now I want to install and

Hi Bob I have tested the same, I found the issue, actually once you run this command, sudo hping3 -S

Hi Raguram I am glad that your issue has been resolved. Regards, Hasitha Upekshitha On Saturday, May

I have installed rsyslog in a linux system and in my firewall sophos I have done the config and

Hi mohan, I suggest you install the Wazuh agent on the syslog server and configure the log collection

Dear Julianne, 1. MITRE mappings are embedded in the ruleset, and are updated with each new release

Thanks Sakib I got it On Monday, May 19, 2025 at 4:39:04 PM UTC+6 Md. Nazmur Sakib wrote: Hi Abdul,

Hi Sai, Could you please follow the link below https://www.youtube.com/watch?v=_wGhzTfLz2Q Regards,

Hi Nour, This issue typically occurs when the Wazuh Manager experiences high load or lacks sufficient

Hi Augusto Could you please provide an update on this, so we can move forward with the issue? Regards

Hi, Thanks for your response. I had already tried the above mentioned steps and had set role as given

Hi Romain. Thanks again for the clarification. Based on what you've described, your Matrix-

Jordan, I had an old test environment at 4.11.2, and I went throught the update steps. I did get the

Matias, thanks for the reply... the msg " Unable to forward message for agent" is 004 :

Hi Ajani, I'm having issues with the snapshot. I successfully created the repository, but when I

Thanks, so no way with that restart. And re build the list.cdb? only for the list, will work? if yes,

Hello, Sorry for late reply, I was doing R&D. But still I was not able to find any article on how

Hi, Log files can quickly accumulate and consume significant disk space on a system. To manage this,

I have tried these solutions many times, I will wait for you with patience пятница, 23 мая 2025 г. в

Hi, Stuti First of all, thank you for your answer. May I ask if you have the screenshot of full_log

Happy to assist. On Friday, May 23, 2025 at 6:44:08 AM UTC+1 Shenal Perera wrote: Hi Henadence Thank

Hi, Yes, it is possible to use a CDB list to define the hostnames of devices for which you do not

Hello everyone I want to set up a new wazuh cluster for 1000 Windows servers and 3000 Linux servers.

Yes, you're right. To determine which event is causing the agent flooding, I recommend first

Hi Mr Vr, I would suggest increasing the heap size as Wazuh Docu suggest: https://documentation.wazuh

Hello Lamya. How are you doing? I have implemented all steps to get Mikrotik Logs but I can't

Hello, I would like to let you know that there is an out of the box decoder and rule which matches

Hi Tharindi, While writing a custom rule for Windows event channel logs, it is very important to know

Hello Xavier, This is an expected limitation of the reporting feature when using visualizations, this

Hi Tiago, Your setup of placing an NGINX proxy between the agents and the Wazuh nodes (Manager,