NOTICE: Significant community changes coming soon
The header menu and the home page on our community will be changing soon. Get more information HERE.

Generic Hostname Resolution Service Collector

Idea ID 2789600

Generic Hostname Resolution Service Collector

Enhance the Generic Hostname Resolution Service Collector as follows:

1) Use DNS Java jar file to resolve the IP Address to Hostname and Vice versa.
2) Use file lock concept for the temporary files which is in ESEC_HOME/collector_common directory, before reading and processing the data in those files.
2 Comments
Micro Focus Expert
Micro Focus Expert
We are accepting this idea into our backlog. When it is planned for development, the status of the idea will be changed to "Planned".
Micro Focus Expert
Micro Focus Expert
Additional requirements from Bug 830297 - provide a DNS resolution service that scales - Nowadays its especially the internet facing event sources like firewalls and proxies that provide important data for analyzing APT related incidents using threat intelligence. Customers must be able to determine the internal hosts involved in such communications from collected IP addresses. - cached values must be expired after their TTL - updates to internal DNS zones (think enterprise DHCP) should be reflected in Sentinel's host name resolution service in real time.
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.