Tricks and TipsΒΆ
This section is a collection of miscellaneous tricks and tips for Security Onion.
- Airgapped Networks
- Analyst VM
- Best Practices
- Cloud Client
- Connecting to Sguild
- Disabling Desktop
- DNS Anomaly Detection
- ICMP Anomaly Detection
- MetaPackages
- Adding a new disk
- PCAPs for Testing
- Removing a Sensor
- Salt
- OnionSalt
- Best Practices
- Salt and OnionSalt are optional packages
- Firewall Requirements
- Installation
- Checking Status
- Remote Execution
- Features
- Using Salt to Install Updates Across Your Entire Deployment
- Modifying Salt config files
- Changing Minion ID
- Salting an Existing Deployment
- Maximum Event Size
- Additional Reading
- Sensor Stops Seeing Traffic
- SSH
- UTC and Time Zones