Testing Wazuh Integration with Enhance - Seeking Advice and Experiences - Enhance Control Panel

Testing Wazuh Integration with Enhance - Seeking Advice and Experiences

netzen

Hello everyone,

I'm currently testing the integration of Wazuh for monitoring logs and metrics from servers managed via Enhance. Specifically, I'm focusing on:

Resource usage metrics like CPU, RAM, Disk, etc.
Logs from OpenLiteSpeed (OLS)
UFW logs
SSH access attempts and related security events
Additionally, I’m considering integrating logs from cPFence into Wazuh for enhanced threat detection. I’m also exploring how to implement malware monitoring through Wazuh, as I believe it has the capabilities to cover all these aspects.

Here is an example of a manual for monitoring resource usage on Ubuntu, which I found useful:
Monitoring Linux Resource Usage with Wazuh

I’d like to know if anyone here has experience with similar setups. Do you think Wazuh is well-suited for this use case? Any tips or recommendations for connecting cPFence logs or optimizing such a configuration would be greatly appreciated.

Looking forward to hearing your thoughts and experiences!

Thanks in advance!

btraill

netzen

Following. (Using a very simple implementation of Wazuh in my infra and also use cPFence)

netzen

btraill Thanks for your reply, btraill!

I’m a beginner with Wazuh, but I’d be happy to share my experiences and setup as I go along. If you or anyone else is interested, we could even collaborate on creating a more comprehensive guide and share our configurations.

I may not have much experience yet, but I’m eager to contribute and learn from others in the process! Let me know what you think. 😊