Timestand timeshift between hunt interface and elastic #12212

ByteAndBits · 2024-01-19T12:40:28Z

ByteAndBits
Jan 19, 2024

Version

2.4.40

Installation Method

Security Onion ISO image

Description

configuration

Installation Type

Distributed

Location

on-prem with Internet access

Hardware Specs

Exceeds minimum requirements

CPU

64

RAM

512GB

Storage for /

15TB

Storage for /nsm

30TB

Network Traffic Collection

span port

Network Traffic Speeds

1Gbps to 10Gbps

Status

Yes, all services on all nodes are running OK

Salt Status

Yes, there are salt failures (please provide detail below)

Logs

No, there are no additional clues

Detail

Hi,

we have a timestamp timeshift betweeen Hunt Interface und elastic discover.

In the discover interface it´s correct in Hunt it´s +1h.

It is a custom build index template.

Where are the timeshift from?

Guidelines

I have read the above statement and can confirm my post is relevant to Security Onion 2.4.

Answered by reyesj2

Jan 24, 2024

https://docs.securityonion.net/en/2.4/timezones.html

In SOC under options you can set the timezone

View full answer

reyesj2 · 2024-01-24T14:53:24Z

reyesj2
Jan 24, 2024
Maintainer

https://docs.securityonion.net/en/2.4/timezones.html

In SOC under options you can set the timezone

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Timestand timeshift between hunt interface and elastic #12212

Uh oh!

{{title}}

Uh oh!

Replies: 1 comment

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

Timestand timeshift between hunt interface and elastic #12212

Uh oh!

ByteAndBits Jan 19, 2024

Version

Installation Method

Description

Installation Type

Location

Hardware Specs

CPU

RAM

Storage for /

Storage for /nsm

Network Traffic Collection

Network Traffic Speeds

Status

Salt Status

Logs

Detail

Guidelines

Replies: 1 comment

Uh oh!

reyesj2 Jan 24, 2024 Maintainer

ByteAndBits
Jan 19, 2024

reyesj2
Jan 24, 2024
Maintainer