26. 01. 2023 Damiano Chini Bug Fixes, Log-SIEM, NetEye

Bugfixes for NetEye 4.27, 4.26, 4.25: Elasticsearch License Renewal

The current Elasticsearch license bundled with NetEye will expire this January 31st. To continue enjoying all the SIEM functionalities you must update to the new license. An automatic update has been released for the most recent NetEye version. Older NetEye releases however, can be updated manually.

In the case the health-check light/01004_elastic_license_check.sh is preventing you from updating your NetEye Installation you can run the following command: neteye update --skip-tags check_health. All other health-check must be successful to ensure a safe update.

For NetEye 4.27, NetEye 4.26 and NetEye 4.25 we updated the following packages:

elasticsearch, elasticsearch-autosetup, elasticsearch-neteye-config, filebeat, filebeat-autosetup, filebeat-neteye-config, apm-server, apm-server-autosetup, apm-server-neteye-config, kibana, kibana-autosetup, kibana-neteye-config, logstash, logstash-autosetup, logstash-neteye-config to version 7.17.5_neteye3.44.1-1

For NetEye 4.24 and older you can update your license manually via Kibana: Stack Management \ License Management \ Update License and upload the new license.

Another option is to update the license via command line:

Download the new license in a file, for example:
/neteye/local/elasticsearch/license/elastic-license-2023.json
Load the new license:
/usr/share/neteye/elasticsearch/scripts/es_curl.sh -X PUT https://elasticsearch.neteyelocal:9200/_license -d @/neteye/local/elasticsearch/license/elastic-license-2023.json -H "Content-Type: application/json"
Verify correct license installation by checking expiry_date:
/usr/share/neteye/elasticsearch/scripts/es_curl.sh https://elasticsearch.neteyelocal:9200/_license | jq

To obtain the new license please contact our Service and Support Team.