Greetings to the community.
Im very very new to the Elasticsearch and i have just started to use it. I installed the OpenDistro 7.10.2 version with the wazuh plugin and so far im getting Host logs successfully. But i need to add Network Based detection as well.
Our company has multiple fortinet firewalls (fortigate) and i want to send netflow logs to FileBeat-OSS or ZEEK and then to ElasticSearch.
So far i can only find the modules in regular filebeat but not in the OSS version and as far as i know i can’t connect normal filebeat to OpenDistro for ES.
Is there any advice or workaround that i can use??
Thanks in advance