Forward Query Logs to SIEM
launched
Aliese
launched
The Data Export Feature is now live! Customers/MSP suborganizations that are on Basic, Pro, or Enterprise can navigate to Tools > Data Export to learn more, or navigate to Organization > Billing to add the feature directly to your subscription!
Learn more about the feature here: https://help.dnsfilter.com/hc/en-us/articles/6266552356499
Aliese
Merged in a post:
upload query logs to S3
Mike
Splunk has built-in native S3 file retrieve and index capability, it’d be sweet to hand dnsfilter s3 query log bucket and and write-only keys and you can shovel data into the bucket and on the splunk side, it can pull it down and index it.
Aliese
in progress ( live <90 days )
Emily
Hi! Any updates on this feature?
Aliese
Hi everyone - Aliese, Program Manager here! We are actively working on scoping out the requirements and want to ensure they reflect what our customers want. We have a short 4 question survey here:
Pau
Aliese: Do you have any development scheduled? It is not necessary to have something very sophisticated. Just retrieving data using a API and getting the results back in JSON format or something would already be an incredible boost (at least for us).
Aliese
Pau: We are on track for an end of May/early June release!
Pau
Aliese: Awesome! Thank you very much :)
Eugene
Would like to see integration with Arctic Wolf. An available API would solve this issue for us. DNSFilter is one of the last vendors that isn't currently being utilized for central monitoring.
Martin
please support elastic cloud somehow :) S3 bucket would also work
Mikey @DNSFilter
up next2
A webhook solution to forward raw DNS queries to your SIEM of choice is planned. Our target delivery is Q3 this year.
Mayur
Splunk
Mikey @DNSFilter
Merged in a post:
SIEM log shipping
Josh
The ability to ship log data to a SIEM service would be a killer feature for us. The correlational data would be invaluable.
Load More
→