Versions Compared

Old Version 11

changes.mady.by.user Rita McKissick

Saved on

compared with

New Version Current

changes.mady.by.user Rita McKissick

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Log into the Metron UI Dashboard: http://METRON_UI_HOST:5000.
  2. Select "Discover" Tab --> Select the "squid*" index.
  3. Search only for alerts in the Squid index.
    1. Type the following in search:
      "is_alert = true"
    2. Click the search icon
  4. Now we only need to select a subset of the fields that we want to display in the detail panel. In the left hand panel under "Available Fields", add the following fields:

full_hostname
ip_src_addr
ip_dst_addr
original_string
method
type

Dashboard with the Two Panels

...