{"id":1553,"date":"2022-07-13T17:20:10","date_gmt":"2022-07-13T10:20:10","guid":{"rendered":"https:\/\/dt-corp.com.vn\/?p=1553"},"modified":"2022-07-13T17:20:10","modified_gmt":"2022-07-13T10:20:10","slug":"leveraging-deep-observability-pipeline-with-sumo-logic","status":"publish","type":"post","link":"https:\/\/dt-corp.com.vn\/?p=1553","title":{"rendered":"Leveraging Deep Observability Pipeline with Sumo Logic"},"content":{"rendered":"<p>With the scale at which applications are growing, security and networks are trying their best to catch up. In order to have a secure environment, it\u2019s of paramount importance that all security tools can talk to each other to provide a holistic picture and fill any gaps left by other tools.<\/p>\n<p>Gigamon\u2019s Deep Observability Pipeline integrates with Sumo Logic, bringing rich network context for applications and collecting attributes from traffic flowing in the network. Sumo Logic analytics services can make use of this rich data to help visualize and identify use cases like:<\/p>\n<ul>\n<li>Detecting rogue IT activities, such as crypto mining and BitTorrent<\/li>\n<li>Detecting weak ciphers for compliance<\/li>\n<li>Detecting expired or near-expiry TLS certificates<\/li>\n<li>DNS queries<\/li>\n<li>Unmanaged hosts<\/li>\n<li>Application overview<\/li>\n<\/ul>\n<p>Gigamon allows you to see any traffic in any environment, then extract application data and attributes. This makes it an agile solution that can facilitate quick detections for zero-day vulnerabilities. Just enable additional attributes with a few clicks, and you\u2019ll be able to see them on your dashboards in Sumo Logic.<\/p>\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><a href=\"https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/MetaDataAttributes.jpg\" data-featherlight=\"image\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-176429026\" src=\"https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/MetaDataAttributes-1024x556.jpg\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" srcset=\"https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/MetaDataAttributes-1024x556.jpg 1024w, https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/MetaDataAttributes-300x163.jpg 300w, https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/MetaDataAttributes-768x417.jpg 768w, https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/MetaDataAttributes.jpg 1430w\" alt=\"\" width=\"1024\" height=\"556\" \/><\/a><figcaption><em>Figure 1: Metadata attributes.<\/em><\/figcaption><\/figure>\n<\/div>\n<p>This provides an ability to store a historical context of all the data in motion, which may otherwise be cost-prohibitive in a public cloud environment and space-prohibitive in an on-prem environment.<\/p>\n<p>The integration with Gigamon Deep Observability Pipeline is straightforward. Once you have a Gigamon solution in place, all you need is a custom HTTPS source URL from Sumo Logic, and the solution will start working in 10 minutes or less.<\/p>\n<p>The examples below are sample dashboards, but this is just one aspect. With Gigamon rich attributes, you can build as many aspects as you like to fill the gaps where needed in your environment.<\/p>\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><a href=\"https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/Sumo-Screenshot-1-scaled.jpg\" data-featherlight=\"image\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-176429028\" src=\"https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/Sumo-Screenshot-1-1024x561.jpg\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" srcset=\"https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/Sumo-Screenshot-1-1024x561.jpg 1024w, https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/Sumo-Screenshot-1-300x164.jpg 300w, https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/Sumo-Screenshot-1-768x421.jpg 768w, https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/Sumo-Screenshot-1-1536x841.jpg 1536w, https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/Sumo-Screenshot-1-2048x1122.jpg 2048w\" alt=\"\" width=\"1024\" height=\"561\" \/><\/a><figcaption><em>Figure 2: Sumo dashboard with Gigamon.<\/em><\/figcaption><\/figure>\n<\/div>\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><a href=\"https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/Sumo-screenshot-3-scaled.jpg\" data-featherlight=\"image\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-176429029\" src=\"https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/Sumo-screenshot-3-1024x553.jpg\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" srcset=\"https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/Sumo-screenshot-3-1024x553.jpg 1024w, https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/Sumo-screenshot-3-300x162.jpg 300w, https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/Sumo-screenshot-3-768x415.jpg 768w, https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/Sumo-screenshot-3-1536x829.jpg 1536w, https:\/\/blog.gigamon.com\/wp-content\/uploads\/2022\/06\/Sumo-screenshot-3-2048x1106.jpg 2048w\" alt=\"\" width=\"1024\" height=\"553\" \/><\/a><figcaption><em>Figure 3: Sumo dashboard with Gigamon.<\/em><\/figcaption><\/figure>\n<\/div>\n<p>As technologies grow at an unprecedented pace, it\u2019s paramount to keep up. Gigamon and Sumo Logic provide one additional layer that makes your network observable for any point in time with rich data to fill any gaps.<\/p>\n<p>Learn more about how Gigamon Deep Observability Pipeline can provide an additional layer of security and help improve your organization\u2019s security posture.<\/p>\n<p>By: <a href=\"https:\/\/blog.gigamon.com\/author\/haider-jarral\/\">Haider Jarral<\/a><\/p>\n<p>Source: <a href=\"https:\/\/blog.gigamon.com\/2022\/07\/12\/leveraging-deep-observability-pipeline-with-sumo-logic\/\">blog.gigamon.com<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p class=\"tx-excerpt\">With the scale at which applications are growing, security and networks are trying their best to catch up. In order to have a secure environment, it\u2019s of paramount importance that all security tools","protected":false},"author":3,"featured_media":1554,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[13],"tags":[],"class_list":["post-1553","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog"],"jetpack_sharing_enabled":true,"jetpack_featured_media_url":"https:\/\/dt-corp.com.vn\/wp-content\/uploads\/2022\/07\/Screenshot-46.png","_links":{"self":[{"href":"https:\/\/dt-corp.com.vn\/index.php?rest_route=\/wp\/v2\/posts\/1553","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dt-corp.com.vn\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dt-corp.com.vn\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dt-corp.com.vn\/index.php?rest_route=\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/dt-corp.com.vn\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1553"}],"version-history":[{"count":1,"href":"https:\/\/dt-corp.com.vn\/index.php?rest_route=\/wp\/v2\/posts\/1553\/revisions"}],"predecessor-version":[{"id":1555,"href":"https:\/\/dt-corp.com.vn\/index.php?rest_route=\/wp\/v2\/posts\/1553\/revisions\/1555"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/dt-corp.com.vn\/index.php?rest_route=\/wp\/v2\/media\/1554"}],"wp:attachment":[{"href":"https:\/\/dt-corp.com.vn\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1553"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dt-corp.com.vn\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1553"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dt-corp.com.vn\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1553"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}