Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.
We are using a proxy to connect our grit to the internet and are trying to update to 2.3.10.
The last time we updates our system half of the installation went fine but the other half couldn´t be downloaded. So we´ve got an broken installation and reinstalled our grit.
Which sites or IPs do I have to whitelist in our proxy/firewall that running souporso-rule-update works properly?
We are using a proxy to connect our grit to the internet and are trying to update to 2.3.10. The last time we updates our system half of the installation went fine but the other half couldn´t be downloaded. So we´ve got an broken installation and reinstalled our grit.
Which sites or IPs do I have to whitelist in our proxy/firewall that running
soup
orso-rule-update
works properly?Originally posted by @martin8615 in https://github.com/Security-Onion-Solutions/securityonion/discussions/2042