graylog-plugin-threatintel icon indicating copy to clipboard operation
graylog-plugin-threatintel copied to clipboard
verified publisher icon Graylog2

No details on firewall rules needed to work

Open sirbod2005 opened this issue 8 years ago • 5 comments

As most of us will be sitting behind a firewall, it would be useful to know the IPs/Host names and ports this plugin uses so we can open up our firewalls for only what is required.

sirbod2005 avatar Feb 27 '18 12:02 sirbod2005

It would also be nice to see some sort of test/confirmation that it can reach the Threat Intel sources from the Plugins page. Currently we have no way of knowing it's working or not.

sirbod2005 avatar Feb 27 '18 13:02 sirbod2005

+1

jskrivseth avatar May 05 '18 20:05 jskrivseth

+1

MP-blue avatar Jul 20 '18 10:07 MP-blue

It would also be nice to see some sort of test/confirmation that it can reach the Threat Intel sources from the Plugins page. Currently we have no way of knowing it's working or not.

@sirbod2005 you can use the lookup tables page to test the tables the plugins leverage.

megan201296 avatar Nov 13 '18 14:11 megan201296

+1

MP-blue avatar Jul 30 '20 10:07 MP-blue