Threats investigation

Vijay · May 9, 2017, 4:36am

Hi team,

I am new for the graylog, kindly help us how to find the threats attacks.

jan · May 9, 2017, 7:37am

Hej @Vijay

please elaborate on what you like to get and what your current status is.

regards
Jan

Vijay · May 9, 2017, 8:07am

Hi Jan,

Thanks for your reply, We have deployed Graylog in over network. In our Data center I want daily logs to be monitor any affected or any attacks happen to take over. I don’t know how to search logs on the ports bases.

Example : private IP address 10.10.10.30 and port number 3389,80,443.

Please help me its very critical issue in data center.

Regards,
Vijay Kumar
Network Engineer.

jan · May 9, 2017, 9:28am

Hej @Vijay

how and what kind of logs did you ingest to Graylog?

Did you read in our graylog blog on the different topics?

regards
Jan

Topic		Replies	Views
Making the most of Graylog Graylog Central (peer support)	1	495	September 1, 2017
Graylog server making connection requests to many public IP's Graylog Central (peer support)	4	488	February 1, 2018
Graylog and private IP sources for syslog Graylog Central (peer support)	1	368	September 9, 2020
GrayLog Newcomer Questions Graylog Central (peer support)	4	264	January 18, 2022
Not able to access the Graylog GUI Graylog Central (peer support)	2	348	April 18, 2019

Threats investigation

Related topics