Forward Query Logs to SIEM | Voters

DNSFilter

Create

Roadmap

Feature Requests

Changelog

Forward Query Logs to SIEM

complete

David

Would like the ability to forward query logs to a SIEM for alerting and correlation.

October 5, 2019

Activity Feed

Sort by

Aliese

marked this post as

complete

The Data Export Feature is now live! Customers/MSP suborganizations that are on Basic, Pro, or Enterprise can navigate to Tools > Data Export to learn more, or navigate to Organization > Billing to add the feature directly to your subscription!

Learn more about the feature here: https://help.dnsfilter.com/hc/en-us/articles/6266552356499

Aliese

Merged in a post:

upload query logs to S3

Peter

Splunk has built-in native S3 file retrieve and index capability, it’d be sweet to hand dnsfilter s3 query log bucket and and write-only keys and you can shovel data into the bucket and on the splunk side, it can pull it down and index it.

September 6, 2018

April 14, 2022

Aliese

marked this post as

in progress

Emily

Hi! Any updates on this feature?

Eugene

Would like to see integration with Arctic Wolf. An available API would solve this issue for us. DNSFilter is one of the last vendors that isn't currently being utilized for central monitoring.

Mikey @DNSFilter

marked this post as

planned

May 3, 2021

Mikey @DNSFilter

Merged in a post:

SIEM log shipping

Josh

The ability to ship log data to a SIEM service would be a killer feature for us. The correlational data would be invaluable.

September 16, 2020

March 24, 2021

Support

We would like to have to for Elastic search as well.

james

Azure Sentinel

Admin

Sumologic

→