How to view logs on evebox

Help
21

Is there anything under the “Events” tab? How are you adding your Suricata events to Elasticsearch?

22

Event tab on Evebox is nothing,
I try create Fleet server set my server IP
image
and I got this error

image
image1094×270 61.4 KB

Before I can create it but after I uninstall I can’t create it anymore
When I create it I set agent as suricata but I don’t get anylogs from suricata
Does I do wrong way ro not sir
Can u guide me the right way to add suricata events to Elasticsearch please.

23

I just configuration Elastic and Suricata already sir but evebox still can’t get logs from Elastic

image
image1768×619 81.4 KB

image
image1786×118 38.5 KB

image
image1786×118 38.5 KB

I just add Elastic agent for suricata. Now I can view logs on Elastic but when I configuration evebox It’s still not get logs
image
image666×505 49.5 KB

Why it’s not get logs sir ?

24

How are you currently sending Suricata events to Elasticsearch?