HelloI've created a custom security event policy in Stealthwatch that will alarm when a single flow matches the condition I specified.However, I don't want the event to simply be reported, I want an action whereby Stealthwatch triggers a request for...
Welcome to the Security Analytics Board!
Please take a look at our Stealthwatch Information Hub and our Stealthwatch Use Cases.Forum Posts
Hi, I use Cisco Stealthwatch Enterprise 7.3.0 and try to set up Webhook Action in Response Management, but sending a test action returns an error "We couldn`t send the HTTPS request". What are the ideas for debugging? P.S The firewall does not see...
Hi experts in the installation guideit doesnt shows how much devices is supported in trial license, because the client buy 3 flowsensor and 1 flow collectorbut adding the last flowsensor it shows this error, its in the attached files, this error hap...
On my stealthwatch device i have SNMP V2 configured can i configure SNMP v3 at the same time with different SNMP server IP address can V2 and V3 works at the same time on stealthwatch kindly confirm
I have noticed that while I have webex open and am doing other things (typing somewhere or playing a game) webex laggs out what im doing every once in a while. Does webex do this on purpose or is this a bug?
HI Team I wanted to know how to setup a backup of all Stealthwatch devices on third party server what is the best way to do it i dont have test bed environemnt so solution should be well tested
Good morning! I have a a simple topology with a SMC Virtual and FlowC Vritual 7.3.0 both, I wonder how to patch and upgrade properly this VMs.Also, in the patches section https://software.cisco.com/download/home/286307166/type/286325237/release/7.3....
I work in an environment using Cisco Stealthwatch. We have a cybersecurity team that is doing an audit on our systems where they are scanning the network for vulnerabilities and other problems. I have to provide my management team with the outputte...
Hi,As I heard, a certain version of Cisco Stealthwatch supports PLR licensing, does anyone know about the version and how should I enable it on my service? Thanks in advance
Resolved! Stealthwatch SMC not reporting data in the dashboard for the exporters in the monitor menu
Hello Everyone,I have SMC 2210, FC 4210, FS 3210 in my network. Stealthwatch 7.3.1 is running on all the appliances.Quick overview of problem:I am not seeing any traffic being reported on interfaces that are being monitored on the switches (exporters...
Hello Team, We are observing a DNS Abuse alert in Stealthwatch from a Mobile Android device. Could you please explain on what basis DNS abuse alert we have checked in Mobile and there are no unusual apps installed?
HelloI have such kind of problem with stealthwatch.I Configured flexible netflow on Cisco cisco WS-C3850 Version 16.3.8 I added 2 lines in flow record config #match datalink mac source address input#match datalink mac destination address input Cisco...
Hellow everyone, I am wrong because of Stealthwatch's environmental IP deployment in my lab, so I adjusted the IP and gateway from the terminal console, and therefore the flow collector and flow sensor of the SMC contral manager console cannot be ide...
I saw that with Stealthwatch 7.3 ERSPAN support has been added to the Flow Sensor. ERSPAN (Encapsulated Remote Switch Port Analyzer) support has been added to the Flow Sensor to increase versatility. Now, it also offers visibility improvements throug...
Hello Folks,I'm running into a problem, when trying to delete the IP settings of an interface of a netflow collector via the cisco stealthwatch central managment applicance configuration webinterface. The interface "eth1" has an configured IP adress...
