Splunk Dev
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How can i put password protection on 8000 port

montu
New Member
‎06-16-2020 03:41 AM

While following the snort 3 manual, after putting the license of splunk on free option, the password protection is gone. Now any computer of my internal and probably external network can log into my 8000 port without any protection. how to put a password protection on this port?

Labels (1)
Labels
0 Karma
Reply

dwaddle
SplunkTrust
SplunkTrust
‎06-16-2020 08:59 AM

You didn't say whether this is your lab or for your business or what.  Some things you can do:

  1.  License Splunk Enterprise and install the Enterprise license.  This gives you support and so on, but is probably out of reach for personal budget.
  2. If this is your NONPRODUCTION lab environment and you can abide by the terms of the development license, get a development license.  See https://dev.splunk.com/enterprise/dev_license.
  3. Put a reverse proxy like Nginx in front of Splunk's UI.  Move Splunk to 127.0.0.1 on an alternate port.  Make the reverse proxy do authentication.  Note this still leaves you with an extremely limited Splunk Free that does not have scheduling or alerts or all of the other features you'll be missing.  This requires a little sysadmin skill to pull off successfully.
Reply

richgalloway
SplunkTrust
SplunkTrust
‎06-16-2020 05:21 AM
Use a firewall to protect port 8000. You can also buy a Splunk license to restore password-controlled access.
---
If this reply helps you, Karma would be appreciated.
Reply

montu
New Member
‎06-16-2020 06:54 AM

I am kind of new in this era can you suggest me any free firewall for kali linux? and "how should i implement on" documentation.

0 Karma
Reply

richgalloway
SplunkTrust
SplunkTrust
‎06-16-2020 07:17 AM
I have no experience with Kali Linux, but a quick Google search of "kali linux firewall" returns several promising results.
---
If this reply helps you, Karma would be appreciated.
0 Karma
Reply
Get Updates on the Splunk Community!

Building Reliable Asset and Identity Frameworks in Splunk ES

 Accurate asset and identity resolution is the backbone of security operations. Without it, alerts are ...

Cloud Monitoring Console - Unlocking Greater Visibility in SVC Usage Reporting

For Splunk Cloud customers, understanding and optimizing Splunk Virtual Compute (SVC) usage and resource ...

Automatic Discovery Part 3: Practical Use Cases

If you’ve enabled Automatic Discovery in your install of the Splunk Distribution of the OpenTelemetry ...