2.4
Table of Contents
About
Introduction
License
First Time Users
Getting Started
Security Onion Console (SOC)
Security Onion Desktop
Network Visibility
Host Visibility
Logs
Updating
Accounts
Services
Customizing for Your Environment
Tuning
Tricks and Tips
Backup
Docker
Jupyter Notebook
Adding a new disk
Network Installation
PCAPs for Testing
Removing a Node
Syslog Output
UTC and Time Zones
pfSense
Endgame
Utilities
Help
Security
Release Notes
Appendix
Cheat Sheet
Security Onion Documentation
Tricks and Tips
Edit on GitHub
Tricks and Tips
This section is a collection of miscellaneous tricks and tips for Security Onion.
Backup
Elasticsearch
Docker
Download
Security
Elastic
Images
Logs
Registry
Networking and Bridging
Containers
VMware Tools
Dependencies
More Information
Jupyter Notebook
Overview
Security Onion Setup
Jupyter Notebook
Adding a new disk
Method 1: LVM (Logical Volume Management)
Method 2: Mount a separate drive to /nsm
Method 3: Make /nsm a symlink to the new logging location
Network Installation
Partitioning
Installing via the network
PCAPs for Testing
Replay
Import
Removing a Node
Removing from Salt
Removing from SOC
Removing from Fleet
Syslog Output
UTC and Time Zones
pfSense
Simple Parser
Elastic Integration for pfSense
Endgame
Configuration
Pivot to Endgame Console
Read the Docs
v: 2.4
Versions
latest
2.4
2.3
test
dev
Downloads
pdf
epub
On Read the Docs
Project Home
Builds