* Aaron [TF]

  • Total activity 77
  • Last activity
  • Member since
  • Following 0 users
  • Followed by 0 users
  • Votes 0
  • Subscriptions 39

Activity overview

Latest activity by * Aaron [TF]
  • * Aaron [TF] created an article,

    No new events / events are not importing

    This is a tough one, and one of the most common problems we see. Aanval is an event management console, so events being critical and central to the operation of the console, it is a common issue th...

  • * Aaron [TF] created an article,

    How do I do a full reset on Aanval?

    Aanval's command line utility has a reset option that will reset Aanval to a new installation. It will delete all event data, reset the sqlite database, clear cache, delete licenses, etc. It cannot...

  • * Aaron [TF] created an article,

    Can Aanval be configured to use a proxy server?

    Aanval's web-interface as well as background processing units (BPUs) are fully proxy compatible. Visit the Proxy display under the Configuration section of the console, where you can enable, select...

  • * Aaron [TF] created an article,

    Does Aanval support Suricata?

    Yes, Aanval fully supports Suricata for both local and remote sensors, including configuration management, signatures, stopping and starting the processes and more. If you are using Suricata, you w...

  • * Aaron [TF] commented,

    If you have a feature request or even just a simple idea, let us know. Aanval has been built over the last 15 years with us listening to what our customers and users need. Let us know.

  • * Aaron [TF] commented,

    Thank you, we've had this in our list of considered features for a while now. I just thought to update you, even if months later.

  • * Aaron [TF] commented,

    PHP5 is no longer supported by PHP, it reached its end-of-life a few months ago, and people began moving away from it several years ago. With the re-write of Aanval 9, we decided to go with PHP7. I...

  • * Aaron [TF] commented,

    Bert, In Aanval 9, we recommend using a native syslog engine like rsyslog to ingest your syslog data and have them written to a structured directory, etc. Then within Aanval, head on over to your s...

  • * Aaron [TF] created an article,

    Signature Management

    In Aanval, Snort and Suricata signatures are managed in a dedicated Signature Management display that is accessed through the Policy display. Select a policy, then select the Signatures button. On...

  • * Aaron [TF] created an article,

    Policies

    Policies within Aanval define the specific parameters for sensors in relation to Aanval. More specifically they manage signatures, and other important details of local and remote Snort and Suricata...