Hi
@Asier Bayon, CentOS is Minimal does not have 'telnet-server' service on it. I have installed the 'telnet' as well as 'telnet-server' packages and enabled the services on both the Host OS --> Ubuntu 18.04 as well as Guest OS --> CentOS 7 Minimal. Now, after a long duration 5 hours altogether I was able to understand, interpret and configure the Telnet-TCP connections.
Kindly also tell me what kind of Network Configuration do you require here to solve this issue?
I have been inside the Host OS from the Guest OS i.e. from CentOS to Ubuntu Telnet-TCP 23 connection is working properly. Screenshot-->
But, I get Error when connecting Guest OS from Host OS i.e. from Ubuntu to CentOS. Screenshot-->
Ubuntu OS Ip --> 192.168.0.100 (DCE_TAPAN_JATAKIA@Kshatriya)
CentOS Ip--> 172.16.47.131 (
root@qradar.localdomain)
Thanks,
@Asier Bayon for the help received until now. Now, stuck in this error.
All the help is greatly appreciated.
My Goal: To pass on the logs of my Ubuntu Host OS to VMWare CentOS so that they can be analysed and parsed inside SIEM to detect Threats while I attack my primary Ubuntu OS with tools from Kali Linux.
Kindly help me solve this.
Note: For those who may be wondering with the type of Usage of this software; all my doubts and queries are generated while I was pursuing my IBM APSkillsAcademy Sec Intel Engg Badge as now I am studying in my Final year of Graduation. I have secured the Mastery Badge and yet being in love with SIEM QRadar dedicatedly practice hands-on daily 1 hour.
Thanks and Regards,
------------------------------
DCE Tapan Jatakia
Student & Cyber Practitioner
DIT University
Dehradun, Uttarakhand,
INDIA - 248001.
+91 9664332984
------------------------------
Original Message:
Sent: Thu April 25, 2019 08:51 AM
From: Asier Bayon
Subject: System Logs redirection to QRadar from Ubuntu 18.04.
Hi Tapan,
What is the network configuration of the twice systems? Can you connect via telnet command to port 514 on QRadar from Ubuntu? I think the problem can be there.
Regards.
------------------------------
Asier Bayon
Original Message:
Sent: Tue April 23, 2019 05:56 PM
From: Tapan Jatakia 👨🎓
Subject: System Logs redirection to QRadar from Ubuntu 18.04.
Hi all,
I am Tapan Jatakia, a student in the ocean of Cyber Security and Forensics having secured the Application Security Engineer Mastery Badge and Security Intelligence Engineer Explorer Badge from the APSkillsAcademy Programme of IBM. I need help to direct the Ubuntu System Logs to the VM hosted QRadar 7.3.1 These are the particulars:-
Primary Operating System: Ubuntu 18.04
Hypervisor Virtual Machine: VMWare Workstation 15 Pro (Version 15.0.4)
QRadar: Community Edition 7.3.1
Guest OS: CentOS 7 x86 and 64 Minimal 1804
QRadar has been installed on the Guest OS and I need to send my Primary OS Logs to the QRadar. FYI I have tried the following listed links but no success:-
Any help is greatly appreciated. Kindly resolve the Query and provide a solution.
Thanks and Regards.
------------------------------
DCE Tapan Jatakia
Student & Cyber Practitioner
DIT University
Dehradun, Uttarakhand,
INDIA - 248001.
+91 9664332984
------------------------------