is there any chance opendistro support ingesting netlfow data that could make dashboard with it?
since the filebeat comes by opendistro is oss version it doesn’t contain netflow module , is there other way to do that?
1 Like
@DepressedAdmin ElastiFlow offers a completely free Basic Tier license for our new Unified Flow Collector. Compared to Logstash or Filebeat, this new collector provides better performance (x14 and x3.5 better throughput respectively), more features, and a full compliment of pre-canned dashboards for Open Distro. It also works with AWS Elasticsearch Service, and we are fully committed to supporting the upcoming ES/Kibana fork.
https://docs.elastiflow.com/docs/kibana
We will also be adding pre-canned configurations for Open Distro Alerts and Anomaly Detection in the future.