Differences

This shows you the differences between two versions of the page.

--- articles [2018/09/28 12:15]
veera [TLS Fingerprinting]
+++ articles [2019/07/13 12:45] (current)
veera [Netflow tunneling]
@@ Line 9: / Line 9: @@
 [[hardware:erspan|Configuring ERSPAN for packet capture into Network Security Monitoring tools]]
+==== Netflow tunneling ====
+Tunneling Netflow to a remote Trisul involves preserving the original IP address of the switch/router. We describe three methods to achieve it, NAT, GRE, and Shim Tunnels.
+[[hardware:gatewaynetflow|Using NAT on gateway to send Netflow to remote Trisul]]
+[[hardware:gretunnel|Using GRE Tunnel to send Netflow to a remote Trisul]]
+[[hardware:shimtunnel|Using a Shim Tunnel to send Netflow to a remote Trisul]]
+[[hardware:shimtunnelintro|Use a Shim Tunnel when you cant use GRE or NAT ]]
 ===== Docker =====
@@ Line 57: / Line 71: @@
 [[ids:snort|Connecting Trisul to Snort with Emerging Threats Rules ]]
+[[ids:snort3|Connecting Trisul to Snort3]]
@@ Line 80: / Line 97: @@
-===== Monit script to keep trisul processes alive =====
+===== Administration Tips  =====
-[[[[monit:monitoring_and_maintain_trisul_process|How to use Monit to keep an eye on Trisul processes]]]]
+[[admin:debuggingcrash|Debugging crashes and other problems on the probe]]
+[[monit:monitoring_and_maintain_trisul_process|How to use Monit to keep an eye on Trisul processes and restart them if necessary]]
+[[admin:ha|Primary and backup configuration]]
+[[admin:udpserver|Check if UDP packets are received]]
 ===== External links =====
+[[Get google api key: Get Google API Key]]
 [[Other links: external_links]]

Trisul Network Analytics Developer Zone

User Tools

Site Tools

Differences

Page Tools

Trisul Network Analytics
Developer Zone