search

StamusNetworks / SELKS

A Suricata based IDS/IPS/NSM distro
https://www.stamus-networks.com/open-source/#selks
GNU General Public License v3.0
1.46k stars 286 forks source link

🐞💿 Threat hunting dashboard empty? #481

Closed dsputnikk closed 4 hours ago

dsputnikk commented 4 hours ago

Is there an existing issue for this?

Current Behavior

Hello all.

I've successfully installed SELKS and receiving traffic on a GRETAP interface. I used the ISO and easy-setup.sh . All pods are healthy, tcpdumps looks as expected, all web UIs load, suricata mgmt interface shows traffic and hits, kibana dashboards work as well. Evebox shows alerts.

However the hunting dashboad is completely empty? Am I missing something?

docker-compose logs are suspiciously empty.

Expected Behavior

I expect to see data in the included hunting dashboard

Steps To Reproduce

VSphere 8 32GB of RAM ES is given 28GBs

Anything else?

No response

dsputnikk commented 4 hours ago

nvmd apparently i needed to hit the "reload" button one extra time -_-